SecurityHome.eu MS08-064 – Important: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841)

Home / bulletins

MS08-064 – Important: Vulnerability in Virtual Address Descriptor Manipulation Could Allow Elevation of Privilege (956841) - Version:1.1
Posted on 15 October 2008
Important
Severity Rating: Important - Revision Note: V1.1 (October 15, 2008): Corrected the link to a reference MSDN article in FAQ for Virtual Address Descriptor Elevation of Privilege Vulnerability - CVE-2008-4036.Summary: This security update resolves a privately reported vulnerability in Virtual Address Descriptor. The vulnerability could allow elevation of privilege if a user runs a specially crafted application. An authenticated attacker who successfully exploited this vulnerability could gain elevation of privilege on an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.
Link
Other versions
MS08-064 - Version: 1.0
MS08-064 - Version: 1.1

TOP

Bulletins :

4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 2.0 -
4056318 - Guidance for securing AD DS account used by Azure AD Connect for directory synchronization - Version: 1.0 -
4053440 - Securely opening Microsoft Office documents that contain Dynamic Data Exchange (DDE) fields - Version: 1.0 -
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - 1.1
MS16-JUL Security Bulletin Summary for July 2016 - 2.0

Last 20

Exploits :

Customer Support System 1.0 Cross Site Scripting
Xhibiter NFT Marketplace 1.10.2 SQL Injection
WordPress WPCode Lite 2.1.14 Cross Site Scripting
Azon Dominator Affiliate Marketing Script SQL Injection
Simple Laboratory Management System 1.0 SQL Injection

Last 20