This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote host contains an application that is affected by a
privilege escalation vulnerability.
The remote host is running a version of Virtual PC or Virtual Server
that incorrectly validates privilege levels when executing specific
instructions in the Virtual Machine Monitor. An attacker who has
logged in to a guest operating system running under the affected
software can leverage this issue to run code with elevated privileges
inside the hosted guest operating system.
See also :
Microsoft has released a set of patches for Virtual PC 2004 and 2007
as well as Virtual Server 2005.
Risk factor :
High / CVSS Base Score : 7.2
CVSS Temporal Score : 6.3
Public Exploit Available : false
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 39795 ()
Bugtraq ID: 35601
CVE ID: CVE-2009-1542
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.