Home    |    View Topics    |    Search    |    Contact Us    |   



Category:   OS (Microsoft)  >   Windows DLL (Any) Vendors:   Microsoft
Windows Kernel Bug Lets Local Users Gain LocalSystem Privileges
SecurityTracker Alert ID:  1019904
SecurityTracker URL:
CVE Reference:   CVE-2008-1436   (Links to External Site)
Updated:  Apr 14 2009
Original Entry Date:  Apr 18 2008
Impact:   Root access via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  Exploit Included:  Yes  
Version(s): XP SP3, 2003 SP2, Vista SP1, 2008; and prior service packs
Description:   A vulnerability was reported in Microsoft Windows. A local user can obtain system privileges on the target system.

A local user can run code in context of the NetworkService or LocalService accounts to gain access to resources in processes that are also running as NetworkService or LocalService and potentially cause those processes to execute arbitrary code with LocalSystem privileges.

Any process that runs with SeImpersonatePrivilege and runs user-supplied code may be subject to exploit.

A presentation on the exploit technique from Cesar Cerrudo of Argeniss is available at:

Windows XP, Windows Server 2003, Windows Vista, and Windows Server 2008 are affected.

Demonstration exploit code is available at:

On March 13, 2009, the SANS Internet Storm Center reported that this vulnerability is being actively exploited as part of a blended attack in conjunction with various unrelated remote application vulnerabilities:

Impact:   A local user can obtain LocalSystem privileges on the target system.
Solution:   The vendor has issued a fix.

A patch matrix is available in the vendor's advisory.

A restart is required.

The vendor's advisory is available at:

The original Microsoft advisory is available at:

Vendor URL: (Links to External Site)
Cause:   Access control error

Message History:   None.

 Source Message Contents

[Original Message Not Available for Viewing]

Go to the Top of This SecurityTracker Archive Page

Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, LLC