Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-70976
HistoryNov 11, 2014 - 12:00 a.m.

Microsoft Windows TCP/IP CVE-2014-4076 Local Privilege Escalation Vulnerability

2014-11-1100:00:00
Symantec Security Response
www.symantec.com
22

0.001 Low

EPSS

Percentile

17.5%

JSON

Description

Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges.

Technologies Affected

  • Microsoft Windows Server 2003 SP2
  • Microsoft Windows Server 2003 x64 Edition Service Pack 2
  • Microsoft Windows Server 2008 for Itanium-based Systems SP2

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
To exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only.

Updates are available. Please see the references or vendor advisory for more information.

Related

prion 1
securityvulns 2
zdt 3
packetstorm 2
cvelist 1
korelogic 1
exploitpack 2
canvas 1
cve 1
checkpoint_advisories 1
nessus 1
openvas 1
exploitdb 2
kaspersky 1
prion
prion
Privilege escalation
2014-11-11 22:55:00
securityvulns
securityvulns
KL-001-2015-001 : Windows 2003 tcpip.sys Privilege Escalation
2015-02-02 00:00:00
Microsoft Windows multiple security vulnerabilities
2015-08-24 00:00:00
zdt
zdt
Windows tcpip.sys Arbitrary Write Privilege Escalation Exploit
2015-02-06 00:00:00
Windows 2k3 SP2 - TCP/IP IOCTL Privilege Escalation (MS14-070) Exploit
2015-08-15 00:00:00
Microsoft Windows Server 2003 SP2 - Privilege Escalation Exploit
2015-01-29 00:00:00
packetstorm
packetstorm
Microsoft Windows Server 2003 SP2 Arbitrary Write Privilege Escalation
2015-01-29 00:00:00
Windows tcpip.sys Arbitrary Write Privilege Escalation
2015-02-05 00:00:00
cvelist
cvelist
CVE-2014-4076
2014-11-11 22:00:00
korelogic
korelogic
Microsoft Windows Server 2003 SP2 Arbitrary Write Privilege Escalation
2015-01-28 00:00:00
exploitpack
exploitpack
Microsoft Windows Server 2003 SP2 - Local Privilege Escalation (MS14-070)
2015-01-29 00:00:00
Microsoft Windows Server 2003 SP2 - TCPIP IOCTL Privilege Escalation (MS14-070)
2015-08-12 00:00:00
canvas
canvas
Immunity Canvas: MS14_070
2014-11-11 22:55:00
cve
cve
CVE-2014-4076
2014-11-11 22:55:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows TCP/IP IOCTL Processing Elevation of Privilege (MS14-070; CVE-2014-4076)
2014-11-11 00:00:00
nessus
nessus
MS14-070: Vulnerability in TCP/IP Could Allow Elevation of Privilege (2989935)
2014-11-12 00:00:00
openvas
openvas
Microsoft Windows TCP/IP Privilege Elevation Vulnerability (2989935)
2014-11-12 00:00:00
exploitdb
exploitdb
Microsoft Windows Server 2003 SP2 - Local Privilege Escalation (MS14-070)
2015-01-29 00:00:00
Microsoft Windows Server 2003 SP2 - TCP/IP IOCTL Privilege Escalation (MS14-070)
2015-08-12 00:00:00
kaspersky
kaspersky
KLA10601 Multiple vulnerabilities in Microsoft products
2014-11-11 00:00:00

0.001 Low

EPSS

Percentile

17.5%

JSON
Related for SMNTC-70976
prion1securityvulns2zdt3packetstorm2cvelist1korelogic1exploitpack2canvas1cve1checkpoint_advisories1nessus1openvas1exploitdb2kaspersky1