Vulnerability Note VU#219848

Microsoft Windows Vista CSRSS privilege escalation vulnerability

Overview

The Microsoft Windows Client/Server Run-time Subsystem (CSRSS) process fails to properly handle error messages. This vulnerability may allow an attacker to execute arbitrary code.

I. Description

The Microsoft Client/Server Run-time Subsystem (CSRSS) is an essential subsystem. CSRSS is responsible for console windows and creating and deleting threads.

According to Microsoft Security Bulletin MS07-021:

A privilege elevation vulnerability exists in the way that the Windows 32 Client/Server Run-time Subsystem (CSRSS) handles its connections during the startup and stopping of processes.

II. Impact

A local authenticated attacker may be able to gain elevated privileges.

III. Solution

Apply update from Microsoft

Microsoft has released an update for this vulnerability in Microsoft Security Bulletin MS07-021.

Systems Affected

Vendor	Status	Date Notified	Date Updated
Microsoft Corporation	Vulnerable	10-Apr-2007

References

http://www.microsoft.com/technet/security/bulletin/ms07-021.mspx

Credit

Thanks to Microsoft for information that was used in this report. Microsoft credits eEye for reporting this vulnerability.

This document was written by Ryan Giobbi.

Other Information

Date Public:	2007-04-10
Date First Published:	2007-04-10
Date Last Updated:	2007-04-11
CERT Advisory:
CVE-ID(s):	CVE-2007-1209
NVD-ID(s):	CVE-2007-1209
US-CERT Technical Alerts:
Metric:	0.08
Document Revision:	12

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Produced 2007 by US-CERT, a government organization
Disclaimers and copyright information

Get Adobe Reader