MS14-049: Vulnerability in Windows Installer Service Could Allow Elevation of Privilege (2962490)
High Nessus Plugin ID 77167
SynopsisThe remote Windows host is affected by a privilege escalation vulnerability.
DescriptionA privilege escalation vulnerability exists on the remote Windows host due to improper handling of the repair functionality in the Windows installer service. A local attacker could exploit this vulnerability to execute arbitrary code on the remote host under the privileges of the system administrator.
SolutionMicrosoft has released a set of patches for 2003, Vista, 2008, 7, 2008 R2, 8, 2012, 8.1, and 2012 R2.