A new Vista vulnerability involving the “Client Server Run-Time Subsystem” is being monitored by Microsoft, according to a blog post by employee Mike Reavey. At the moment Microsoft has not observed any actual attack involving the vulnerability.

“We are closely monitoring developments related to a public posting of proof of concept code targeting an issue with the Client Server Run-Time Subsystem,” wrote Reavey.

The PoC reportedly allows a user to elevate their access privileges  on Windows 2000 SP4, Windows Server 2003 SP1, Windows XP SP1, Windows XP SP2 and Windows Vista operating systems. For example, a user could increase their access level from user to administrator. However, the user does need to be logged into the PC or have access to the network to be able to exploit this vulnerability.

According to Reavey, Microsoft has activated its emergency response process involving a several staff who are “investigating the issue in depth to determine the full scope and potential impact to Microsoft’s customers”. 

“Currently we have not observed any public exploitation or attack activity regarding this issue,” wrote Reavey. 

“While I know this is a vulnerability that impacts Windows Vista I still have every confidence that Windows Vista is our most secure platform to date. 

“As always, we here at the MSRC encourage everyone to enable a firewall, apply all security updates and install anti-virus and anti-spyware software.”

Microsoft will continue to monitor threats over the holiday season:

“If we do see anything that we believe puts Microsoft customers at risk, or significant new developments, we will update everyone through our standard mechanisms including this blog and if need be, an Advisory with additional details.”

Related:

Entry was posted on Saturday, December 23rd, 2006 at 2:21 am under Microsoft, Technology, Vista.

Read more entries by John Pospisil.
Stumble It!