Home / bulletins MS07-065 – Important: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) - Version:1.1
Posted on 13 December 2007
There is an newer version: MS07-065 - Version: 1.3
Severity Rating: Important - Revision Note: Bulletin updated to reflect that the attacker must log on for local elevation of privilege on Microsoft Windows 2000 Professional and Windows XP.Summary: This important security update resolves a privately reported vulnerability in Message Queuing Service (MSMQ) that could allow remote code execution in implementations on Microsoft Windows 2000 Server, or elevation of privilege in implementations on Microsoft Windows 2000 Professional and Windows XP. An attacker must have valid logon credentials to exploit the elevation of privilege vulnerability on Microsoft Windows 2000 Professional and Windows XP. An attacker could then install programs; view, change, or delete data; or create new accounts.
Other versions
- MS07-065 - Version: 1.0
- MS07-065 - Version: 1.1
- MS07-065 - Version: 1.2
- MS07-065 - Version: 1.3
