(MS12-033) Vulnerability in Windows Partition Manager Could Allow Elevation of Privilege (2690533)
Publish Date: 09 mai 2012
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2012-0178
Date du conseil: 09 mai 2012
Description
A vulnerability in the way Windows Partition Manager handles device relation requests could allow an attacker to run code on an affected system. When successfully exploited, the attacker can run programs or change data. To successfully exploit this vulnerability, an attacker must be able to log on locally with known logon credentials on the target machine.
Solutions
Affected software and version:
- Windows Vista Service Pack 2
- Windows Vista x64 Edition Service Pack 2
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 for Itanium-based Systems Service Pack 2
- Windows 7 for 32-bit Systems
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems
- Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
- Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core Installation)
- Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core Installation)
- Windows Server 2008 R2 for x64-based Systems (Server Core Installation)
- Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core Installation)