Vulnerability early warning: system privilege escalation Vulnerability, CVE-2 0 1 4-6 3 2 4 affects all versions of Windows Server-the vulnerabilities and early warning-the black bar safety net

ID MYHACK58:62201456032
Type myhack58
Reporter 佚名
Modified 2014-11-20T00:00:00


Microsoft today released an emergency patch that fixes an affect all versions of Windows Server a serious vulnerability. Today released the MS14-0 6 8 vulnerability patch used to address the Microsoft Windows Kerberos KDC vulnerability that allows hackers to enhance any ordinary user rights become the domain administrator, the Domain Admin who is.

Recently Microsoft has vulnerabilities constantly, just before 1 1 on Microsoft just did it once contain up to 1 6 security patches system upgrades, of which 5 of these vulnerabilities is marked as critical. Microsoft already released the MS14-0 6 8, and later found another problem on the back. Today officially released the MS14-0 6 8 patch, American US-CERT also marks the emergency of the alarm.

Confirmed to be successful the use of the software and system

Windows Server 2 0 0 3 Windows Vista Windows Server 2 0 0 8 Windows 7 Windows Server 2 0 0 8 R2 Windows 8 and Windows 8.1 Windows Server 2 0 1 2 and Windows Server 2 0 1 2 R2 The Server Core installation option

Vulnerability description

Microsoft MS14-0 6 8 patch fixes the Windows Kerberos allows elevation of privilege vulnerability, CVE-2 0 1 4-6 3 2 4 this vulnerability could allow an attacker to elevate an ordinary domain user account for the domain administrator account. An attacker could use these elevated privileges to control domain, all the computers, including the domain server.

[1] [2] next