Microsoft Windows Client/Server Runtime Subsystem privilege escalation vulnerability - MS10-069ID: oval:org.secpod.oval:def:1454 | Date: (C)2011-07-15 (M)2022-04-14 |
Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft security bulletin, MS10-069. The update is required to fix privilege escalation vulnerability. A flaw is present in the Client/Server Runtime Subsystem (CSRSS) in Win32 subsystem, which fails to allocate memory for transactions. Successful exploitation could allow a local attacker to gain privileges via a crafted application on the system with elevated privileges.
Platform: |
Microsoft Windows XP |
Microsoft Windows Server 2003 |