MS07-067: Vulnerability in Macrovision Driver Could Allow Local Elevation of Privilege (944653)
Medium Nessus Plugin ID 29311
SynopsisThe remote Windows host contains a kernel driver that is prone to a local privilege escalation attack.
DescriptionMacrovision SafeDisc, a copy-protection application for Microsoft Windows, is installed on the remote host.
The 'SECDRV.SYS' driver included with the version of SafeDisc currently installed on the remote host enables a local user to gain SYSTEM privileges using a specially crafted argument to the METHOD_NEITHER IOCTL.
SolutionMicrosoft has released a set of patches for Windows XP and 2003.