MS13-102: Vulnerability in LRPC Client Could Allow Elevation of Privilege (2898715)
Medium Nessus Plugin ID 71317
SynopsisA client on the host is vulnerable to a privilege escalation vulnerability.
DescriptionA privilege escalation vulnerability exists in the LRPC client on the host. Exploitation occurs when an authenticated attacker spoofs an LRPC server and uses a specially crafted LPC port message to cause a stack- based buffer overflow condition on the LRPC client.
SolutionMicrosoft has released a set of patches for Windows 2003 and XP.