Microsoft Windows Ancillary Function Driver Lets Local Users Gain Elevated Privileges
|
|
SecurityTracker Alert ID: 1025643 |
|
SecurityTracker URL: http://securitytracker.com/id/1025643
|
|
CVE Reference:
CVE-2011-1249
(Links to External Site)
|
Date: Jun 14 2011
|
Impact:
Root access via local system
|
Fix Available: Yes Vendor Confirmed: Yes
|
Version(s): XP SP3, 2003 SP2, Vista SP2, 2008 SP2, 7 SP1, 2008 R2 SP1; and prior service packs
|
Description:
A vulnerability was reported in the Microsoft Windows Ancillary Function Driver. A local user can obtain elevated privileges on the target system.
A local user can supply specially crafted data to 'afd.sys' to execute arbitrary code on the target system with kernel-level privileges.
Steven Adair from the Shadowserver Foundation and Chris S. reported this vulnerability.
|
Impact:
A local user can obtain kernel-level privileges on the target system.
|
Solution:
The vendor has issued the following fixes:
Windows XP Service Pack 3:
http://www.microsoft.com/downloads/details.aspx?familyid=A1DB7736-F3E4-45DF-AF1D-52746978A0A8
Windows XP Professional x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=71497891-41A2-476D-B524-4EB5CECB9639
Windows Server 2003 Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=C614CB8B-223E-4F84-B94C-F15747760AA5
Windows Server 2003 x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=9A951087-25C5-4F5C-8407-A1585491AE0B
Windows Server 2003 with SP2 for Itanium-based Systems:
http://www.microsoft.com/downloads/details.aspx?familyid=DD48B93B-24FA-45A3-91FB-9F9F9418C49F
Windows Vista Service Pack 1 and Windows Vista Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=B69E3BDA-940B-4524-A724-0AF4AE0EC719
Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=E3A26BC5-1757-4B38-9CAE-419C919F4877
Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=E34E4CF9-CDAE-4240-8574-950C0BE00822
Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=A3604F05-26B2-451B-9153-0E718158371E
Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2:
http://www.microsoft.com/downloads/details.aspx?familyid=E8A82B44-E1D8-45F8-B8B8-B1F74E1EFCE0
Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=63D8B801-5178-474B-A21E-72A0CE501D3E
Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=CD7D3CB9-CB60-4B62-B0DF-A38FE21802E9
Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=E67C73CA-D0F9-40C1-8B6E-25B1B13CAA3A
Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1:
http://www.microsoft.com/downloads/details.aspx?familyid=72D1D6B6-E8BD-492B-B65A-82060BEEF441
A restart is required.
The Microsoft advisory is available at:
http://www.microsoft.com/technet/security/bulletin/ms11-046.mspx
|
Vendor URL: www.microsoft.com/technet/security/bulletin/ms11-046.mspx (Links to External Site)
|
Cause:
Access control error
|
Underlying OS:
|
|
Message History:
None.
|
Source Message Contents
|
|
|
[Original Message Not Available for Viewing]
|
|
