|MS12-042||Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (2711167)||Windows XP||Important||13-06-2012|
Brief overview of the risk:
This security update resolves one privately reported vulnerability and one publicly disclosed vulnerability in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that exploits the vulnerability.
Detailed Information on the risk:
An elevation of privilege vulnerability exists in the way that the Windows User Mode Scheduler handles system requests. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.
Further information on this exploit is available at : MS12-042
Affected SoftwareWindows XP Service Pack 3
Windows Server 2003 Service Pack 2
Windows 7 for x64-based Systems
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core Installation)
Windows Server 2008 R2 for x64-based Systems (Server Core Installation)