MS12-001: Vulnerability in Windows Kernel Could Allow Security Feature Bypass (2644615)

This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.

Synopsis :

The remote Windows host has a flaw in a security feature that is
utilized by certain software applications.

Description :

The remote Windows host has a bypass vulnerability in the SafeSEH
security feature. This could allow an attacker to use other
vulnerabilities to bypass the SafeSEH security feature and run
arbitrary code on the remote host. Only software applications
compiled using Microsoft Visual C++ .NET 2003 could be used to exploit
this vulnerability.

See also :

Solution :

Microsoft has released a set of patches for Windows XP, 2003, Vista,
2008, 7, and 2008 R2.

Risk factor :

High / CVSS Base Score : 9.3
CVSS Temporal Score : 6.9
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 57469 ()

Bugtraq ID: 51296

CVE ID: CVE-2012-0001

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial