Home / bulletins MS10-099 - Important: Vulnerability in Routing and Remote Access Could Allow Elevation of Privilege (2440591) - Version:1.0
Posted on 14 December 2010
ImportantSeverity Rating: Important - Revision Note: V1.0 (December 14, 2010): Bulletin published.Summary: This security update addresses a privately reported vulnerability in the Routing and Remote Access NDProxy component of Microsoft Windows. This security update is rated Important for all supported editions of Windows XP and Windows Server 2003. All supported editions of Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 are not affected by the vulnerability. The vulnerability could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability. The vulnerability could not be exploited remotely or by anonymous users.