MS KB982316: Elevation of Privilege Using Windows Service Isolation Bypass
Medium Nessus Plugin ID 48761
SynopsisThe remote Windows host has a privilege escalation vulnerability.
DescriptionWindows Service Isolation can be bypassed on the remote host, resulting in the elevation of privileges.
A local attacker could exploit this by leveraging the TAPI service to execute code as SYSTEM.
A similar problem affects other Windows services that run as the NetworkService user (e.g. IIS, SQL Server), though Nessus has not checked for those issues.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, 2008, 7, and 2008 R2 :
Although these patches mitigate this vulnerability, users should be aware this is considered a non-security update by Microsoft. Refer to the Microsoft advisory for more information.