MS13-058 - Important : Vulnerability in Windows Defender Could Allow Elevation of Privilege (2847927

News

Extraordinary Robot
Robot
Joined
Jun 27, 2006
Messages
23,048
Severity Rating: Important
Revision Note: V1.0 (July 9, 2013): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in Windows Defender for Windows 7 and Windows Defender when installed on Windows Server 2008 R2. The vulnerability could allow elevation of privilege due to the pathnames used by Windows Defender. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. The attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. An attacker must have valid logon credentials to exploit this vulnerability. The vulnerability could not be exploited by anonymous users.

More...
 


Back
Top