Home / bulletins MS07-065 – Important: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) - Version:1.2
Posted on 20 December 2007
There is an newer version: MS07-065 - Version: 1.3
Severity Rating: Important - Revision Note: Bulletin updated to combine references to Windows 2000 Professional and Windows 2000 Server with a reference to Windows 2000 due to both platforms sharing the same vulnerability and severity.Summary: This important security update resolves a privately reported vulnerability in Message Queuing Service (MSMQ) that could allow remote code execution in implementations on Microsoft Windows 2000, or elevation of privilege in implementations on Microsoft Windows XP. An attacker must have valid logon credentials to exploit the elevation of privilege vulnerability on Windows XP. An attacker could then install programs; view, change, or delete data; or create new accounts.
Other versions
- MS07-065 - Version: 1.0
- MS07-065 - Version: 1.1
- MS07-065 - Version: 1.2
- MS07-065 - Version: 1.3
