Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5352

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2007-5352
Last Modified 07 Mar 2011 10:00:33
Published 08 Jan 2008 03:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-5352

Summary

Unspecified vulnerability in Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows local users to gain privileges via a crafted local procedure call (LPC) request.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server Sp1

  • Microsoft Windows 2003 Server Sp2

  • Microsoft Windows Xp


References

CERT - TA08-008A

CERT-VN - VU#410025

MS - MS08-002

SECUNIA - 28341

VUPEN - ADV-2008-0070

HP - HPSBST02304

XF - win-lsass-lpc-privilege-escalation(39233)

BID - 27099

HP - SSRT080003

SECTRACK - 1019165


Last Updated: 27 May 2016 10:46:09