MS KB2506014: Update for the Windows Operating System Loader
High Nessus Plugin ID 56824
SynopsisThe remote Windows host does not properly enforce driver signing.
DescriptionThe remote Windows host contains a version of the Windows OS Loader (winload.exe) which does not properly enforce driver signing. This could result in unsigned drivers being loaded by winload.exe.
While this update does not address any specific vulnerabilities, it prevents winload.exe from loading unsigned binaries. This technique is commonly used by malware (e.g. rootkits) to stay resident on a system after the initial infection.
SolutionMicrosoft has released a set of patches for the 64-bit editions of Windows Vista, 2008, 7, and 2008 R2.