MS14-003: Vulnerability in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (2913602)

This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.

Synopsis :

The Windows kernel on the remote host is affected by a privilege
escalation vulnerability.

Description :

The remote host contains a flaw in the way the Windows kernel handles
thread-owned window handle objects. Successful exploitation could allow
a local attacker to take complete control of an affected system.

See also :

Solution :

Microsoft has released a set of patches for Windows 7 and 2008 R2.

Risk factor :

High / CVSS Base Score : 7.2
CVSS Temporal Score : 6.3
Public Exploit Available : false

Family: Windows : Microsoft Bulletins

Nessus Plugin ID: 71943 ()

Bugtraq ID: 64725

CVE ID: CVE-2014-0262