MS13-033: Vulnerability in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2820917)
High Nessus Plugin ID 65880
SynopsisThe remote Windows host has a privilege escalation vulnerability.
DescriptionThe Windows Client/Server Run-time Subsystem (CSRSS) on the remote host has a privilege escalation vulnerability due to an improper handling of objects in memory. An attacker who successfully exploits this vulnerability can execute arbitrary code in the context of the local system. The attacker could then install or modify applications as well as create new accounts with full user rights.
SolutionMicrosoft has released a set of patches for Windows XP, 2003, Vista, and 2008.