Microsoft Investigating Possible Vista Flaw
Researchers at security vendor Determina reported the vulnerability to Microsoft after a proof-of-concept exploit was posted to a Russian Web site on Dec. 15.
The flaw, which affects the method in which the Windows Client/Server Runtime Server Subsystem (CSRSS) processes certain types of error messages, could allow an authenticated user to execute malicious code and gain elevated privileges on the affected machine, according to Redwood Shores, Calif.-based Determina.
The Windows 2000 Service Pack 4, Windows Server 2003 SP1, Windows XP SP1, Windows XP SP2 and Windows Vista operating systems are affected by the flaw, Determina said.
In a Thursday post on its Security Response Center Blog, Microsoft said it's closely monitoring developments around the proof of concept but indicated that attacks using the vulnerability have yet to materialize.
Danish security research firm Secunia didn't view the vulnerability as serious, giving it a threat rating of "less critical," or 2 on a 5-point scale. The French Security Incident Research Team (FrSIRT) had a similar view, calling it a "moderate risk," or 2 on a 4-point scale.