(MS11-080) Vulnerability in Ancillary Function Driver Could Allow Elevation of Privilege (2592799)
Publish Date: 13 octobre 2011
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2011-2005
Date du conseil: 13 octobre 2011
Description
This update resolves a privately reported vulnerability in the Microsoft Windows Ancillary Function Driver (AFD). The vulnerability could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit the vulnerability.
Information Exposure Rating:
Solutions
Affected software and version:
- Windows XP Service Pack 3
- Windows XP Professional x64 Edition Service Pack 2
- Windows Server 2003 Service Pack 2
- Windows Server 2003 x64 Edition Service Pack 2
- Windows Server 2003 with SP2 for Itanium-based Systems