(MS10-069) Vulnerability in Windows Client/Server Runtime Subsystem Could Allow Elevation of Privilege (2121546)

  Severity: HIGH
  CVE Identifier: CVE-2010-1891
  Advisory Date: FEB 20, 2013

  DESCRIPTION

This security update addresses a vulnerability in Microsoft Windows. Once exploited, it could elevate the privilege of an attacker who is logged on to an affected system configured with a Chinese, Japanese, or Korean system.

In addition, a remote attacker who successfully exploited this vulnerability could do the following: install programs, view and change data among others.

  TREND MICRO PROTECTION INFORMATION

For information on patches specific to the affected software, please refer to this Microsoft Web page.

  AFFECTED SOFTWARE AND VERSION

  • Windows Server 2003 Service Pack 2
  • Windows Server 2003 with SP2 for Itanium-based Systems
  • Windows Server 2003 x64 Edition Service Pack 2
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows XP Service Pack 3