This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.
The remote Windows host is affected by multiple privilege escalation
The remote Windows host is affected by several vulnerabilities in the
Kernel-Mode drivers that could allow elevation of privilege :
- Flaws in the way the Windows kernel-mode drivers manage
driver objects could be exploited to execute arbitrary
code in kernel mode. (CVE-2012-1864, CVE-2012-1865,
- Windows kernel-mode drivers do not properly allocate
memory when handling fonts, which could be exploited to
execute arbitrary code in kernel mode. (CVE-2012-1867)
- A race condition exists in the way that the kernel deals
with specific thread creation attempts. This could be
exploited to execute arbitrary code in kernel mode.
See also :
Microsoft has released a set of patches for Windows XP, 2003, Vista,
2008, 7, and 2008 R2.
Risk factor :
High / CVSS Base Score : 8.5
CVSS Temporal Score : 7.4
Public Exploit Available : true