Home / bulletins MS08-005 – Important: Vulnerability in Internet Information Services Could Allow Elevation of Privilege (942831) - Version:1.1
Posted on 18 February 2008
Severity Rating: Important - Revision Note: Bulletin Updated: Corrected the download link reference for Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2 to reference Internet Information Services 6.0. The download link correctly directed customers to the IIS 6.0 update but the reference link incorrectly stated IIS 5.1Summary: This important update resolves a privately reported vulnerability in Internet Information Services (IIS). A local attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
Other versions
- MS08-005 - Version: 1.0
- MS08-005 - Version: 1.1
