Microsoft Windows Ancillary Function Driver CVE-2012-0148 Local Privilege Escalation Vulnerability

2012-02-1400:00:00

Symantec Security Response

www.symantec.com

0.0004 Low

EPSS

Percentile

0.4%

JSON

Description

Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers.

Technologies Affected

Avaya Aura Conferencing 6.0 Standard
Avaya CallPilot 4.0
Avaya CallPilot 5.0
Avaya Communication Server 1000 Telephony Manager 3.0
Avaya Communication Server 1000 Telephony Manager 4.0
Avaya Meeting Exchange - Client Registration Server
Avaya Meeting Exchange - Recording Server
Avaya Meeting Exchange - Streaming Server
Avaya Meeting Exchange - Web Conferencing Server
Avaya Meeting Exchange - Webportal
Avaya Meeting Exchange 5.0
Avaya Meeting Exchange 5.0 SP1
Avaya Meeting Exchange 5.0 SP2
Avaya Meeting Exchange 5.0.0.0.52
Avaya Meeting Exchange 5.1
Avaya Meeting Exchange 5.1 SP1
Avaya Meeting Exchange 5.2
Avaya Meeting Exchange 5.2 SP1
Avaya Meeting Exchange 5.2 SP2
Avaya Messaging Application Server 4
Avaya Messaging Application Server 5
Avaya Messaging Application Server 5.2
Microsoft Windows 7 Home Premium Sp1 X64
Microsoft Windows 7 for x64-based Systems
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows Server 2003 Datacenter x64 Edition SP2
Microsoft Windows Server 2003 Enterprise x64 Edition SP2
Microsoft Windows Server 2003 Itanium SP2
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2008 R2 Itanium
Microsoft Windows Server 2008 R2 Itanium SP1
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 R2 x64
Microsoft Windows Server 2008 R2 x64 SP1
Microsoft Windows Server 2008 for Itanium-based Systems
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for x64-based Systems
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows XP Professional x64 Edition SP2

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.

Updates are available. Please see the references for more details.

CPENameOperatorVersion
microsoft windowseq7 for x64-based Systems SP1 
avaya communication servereq1000 Telephony Manager 4.0 
microsoft windows servereq2003 Datacenter x64 Edition SP2 
avaya messaging application servereq5 
avaya callpiloteq5.0 
microsoft windows servereq2008 R2 Itanium SP1 
microsoft windows servereq2008 R2 x64 
microsoft windows servereq2003 Itanium SP2 
microsoft windowseq7 for x64-based Systems 
avaya meeting exchangeeq5.1 

Name	Operator	Version
microsoft windows	eq	7 for x64-based Systems SP1
avaya communication server	eq	1000 Telephony Manager 4.0
microsoft windows server	eq	2003 Datacenter x64 Edition SP2
avaya messaging application server	eq	5
avaya callpilot	eq	5.0
microsoft windows server	eq	2008 R2 Itanium SP1
microsoft windows server	eq	2008 R2 x64
microsoft windows server	eq	2003 Itanium SP2
microsoft windows	eq	7 for x64-based Systems
avaya meeting exchange	eq	5.1

Rows per page:

1-10 of 331

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for SMNTC-51930