MS12-032: Vulnerability in TCP/IP Could Allow Elevation of Privilege (2688338)

The remote Windows host is affected by multiple elevation of privilege vulnerabilities : - A flaw in the way outbound broadcast packets are handled could be utilized by an attacker to bypass the Windows Firewall defense-in-depth mechanism. CVE-2012-0174 - The TCP/IP stack is susceptible to an...

CVE-2012-0174

CVE-2012-0174 affects Windows through tcpip.sys where outbound broadcast traffic is not properly filtered by the Windows Firewall, enabling a local attacker to observe broadcast traffic and potentially bypass firewall rules on affected systems (Vista SP2, Server 2008 SP2/R2, Windows 7 SP1). Root ...