MS KB2506014: Update for the Windows Operating System Loader

This script is Copyright (C) 2012-2017 Tenable Network Security, Inc.


Synopsis :

The remote Windows host does not properly enforce driver signing.

Description :

The remote Windows host contains a version of the Windows OS Loader
(winload.exe) which does not properly enforce driver signing. This
could result in unsigned drivers being loaded by winload.exe.

While this update does not address any specific vulnerabilities, it
prevents winload.exe from loading unsigned binaries. This technique
is commonly used by malware (e.g. rootkits) to stay resident on a
system after the initial infection.

See also :

http://technet.microsoft.com/en-us/security/advisory/2506014

Solution :

Microsoft has released a set of patches for the 64-bit editions of
Windows Vista, 2008, 7, and 2008 R2.

Risk factor :

High / CVSS Base Score : 7.6
(CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)

Family: Windows

Nessus Plugin ID: 56824 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now