Microsoft Windows远程过程调用子系统本地权限提升漏洞（MS10-084）

BUGTRAQ ID: 43777 CVE ID: CVE-2010-3222 Microsoft Windows是微软发布的非常流行的操作系统。 运行在NetworkService账号环境下的远程过程调用子系统（RPCSS）中在LPC与LRPC Server（RPC端点映射器）之间交换端口消息存在栈溢出漏洞。本地应用程序可以使用LPC请求LPC服务器通过LRPC回连到客户端，而请求中的特制数据可以触发栈溢出，允许通过认证的用户访问在NetworkService账号环境中所运行的资源。 Microsoft Windows XP SP3 Microsoft Windows XP Pro...

Windows Local Procedure Call Privilege Elevation Vulnerability (2360937)

This host is missing a critical security update according to Microsoft Bulletin MS10-084. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS10-084: Vulnerability in Windows Local Procedure Call Could Cause Elevation of Privilege (2360937)

The LRPC implementation on the remote host has a vulnerability in the way the local LRPC server handles specially crafted LPC messages. A locally, authenticated user could exploit this flaw to elevate his privileges to the NetworkService account. C Tenable Network Security, Inc...