(MS13-034) Vulnerability in Microsoft Antimalware Client Could Allow Elevation of Privilege (2823482)
Publish Date: 14 Mai 2013
Schweregrad:: Hoch
CVE Kennungen:: CVE-2013-0078
Hinweisdatum: 14 Mai 2013
Beschreibung
This security update resolves a reported vulnerability in the Microsoft Antimalware Client. The vulnerability, if left unpatched, may allow elevation of privilege due to the pathnames used by the Microsoft Antimalware Client. An attacker who successfully exploits this vulnerability could execute arbitrary code and take complete control of an affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. An attacker must have valid logon credentials to exploit this vulnerability. The vulnerability could not be exploited by anonymous users.
Lösungen
Betroffene Software und Version:
- Windows Defender for Windows 8 and Windows RT