This script is Copyright (C) 2012-2015 Tenable Network Security, Inc.
The remote Windows host is affected by multiple privilege escalation
The remote Windows host is affected by several vulnerabilities in the
Kernel-Mode drivers that could allow elevation of privilege :
- Flaws in the way the Windows kernel-mode drivers manage
driver objects could be exploited to execute arbitrary
code in kernel mode. (CVE-2012-1864, CVE-2012-1865,
- Windows kernel-mode drivers do not properly allocate
memory when handling fonts, which could be exploited to
execute arbitrary code in kernel mode. (CVE-2012-1867)
- A race condition exists in the way that the kernel deals
with specific thread creation attempts. This could be
exploited to execute arbitrary code in kernel mode.
See also :
Microsoft has released a set of patches for Windows XP, 2003, Vista,
2008, 7, and 2008 R2.
Risk factor :
High / CVSS Base Score : 8.5
CVSS Temporal Score : 7.4
Public Exploit Available : true
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 59459 ()
Bugtraq ID: 5381553816538175381953820
CVE ID: CVE-2012-1864CVE-2012-1865CVE-2012-1866CVE-2012-1867CVE-2012-1868
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.