Privilege Escalation Vulnerability in WINS - MS08-034
|ID: oval:org.secpod.oval:def:2582||Date: (C)2011-10-21 (M)2017-10-04|
|Class: PATCH||Family: windows|
The host is missing an important security update according to Microsoft security bulletin, MS08-034. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows Internet Name Service(WINS), which fails to handle validation of the data structures of network packets processed by WINS. Successful exploitation could allow an attacker to install programs, view, change, or delete data or create new accounts with full user rights.
|Microsoft Windows 2000|
|Microsoft Windows Server 2003|