torsdag 28 november 2013

Sårbarhet i NDProxy driver

Zscaler, som arbetar tillsammans med Microsoft via MAPPs-programmet har proaktivt utvecklat skydd för en nyupptäckt sårbarhet i NDProxy driver. Skyddet omfattar alla utsatta plattformar.

MSA-2914486Vulnerability in Microsoft Windows Kernel Could Allow Elevation of Privilege

Severity: Critical

Affected Software
·   Windows XP (All Versions)
·   Windows Vista (All Versions)
·   Windows 7 (All Versions)
·   Windows 8 (All Versions)
·   Windows Server 2003/2008

CVE-2013-5065Vulnerability in NDProxy driver can lead to Code Execution
Description: There is a local authenticated vulnerability in the NDProxy driver that can lead to code execution in ring0 context. The vulnerability is an elevation of privilege vulnerability. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.