MS14-039: Vulnerability in On-Screen Keyboard Could Allow Elevation of Privilege (2975685)
High Nessus Plugin ID 76408
SynopsisThe remote Windows host is affected by a privilege escalation vulnerability.
DescriptionA privilege escalation vulnerability exists on the remote Windows host due to improper handling of low integrity processes with the On- Screen Keyboard (OSK). A local attacker could exploit this vulnerability to execute arbitrary code on the remote host under the privileges of the current user.
SolutionMicrosoft has released a set of patches for Vista, 2008, 7, 2008 R2, 8, 2012, 8.1, and 2012 R2.