MS12-001: Vulnerability in Windows Kernel Could Allow Security Feature Bypass (2644615)

This script is Copyright (C) 2012-2013 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has a flaw in a security feature that is
utilized by certain software applications.

Description :

The remote Windows host has a bypass vulnerability in the SafeSEH
security feature. This could allow an attacker to use other
vulnerabilities to bypass the SafeSEH security feature and run
arbitrary code on the remote host. Only software applications
compiled using Microsoft Visual C++ .NET 2003 could be used to exploit
this vulnerability.

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms12-001

Solution :

Microsoft has released a set of patches for Windows XP, 2003, Vista,
2008, 7, and 2008 R2.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 6.9
(CVSS2#E:U/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 57469 ()

Bugtraq ID: 51296

CVE ID: CVE-2012-0001