Reported December 14, 2004, by Microsoft
· Microsoft Windows NT Server 4.0 Service Pack 6a
· Microsoft Windows NT Server 4.0 Terminal Server Edition Service Pack 6
· Microsoft Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4
· Microsoft Windows XP Service Pack 1
· Microsoft Windows Server 2003
· Microsoft Windows XP 64-Bit Edition Service Pack 1
Two new vulnerabilities exist in Microsoft Windows, both of which could result in escalation of privileges on the vulnerable system. The first vulnerability is in the way that the Windows Kernel launches applications. The other vulnerability is in the way that LSASS validates identity tokens. Both vulnerabilities could allow a logged-on user to take complete control of the system.
Microsoft has released Security Bulletin MS04-044, "Vulnerabilities in Windows Kernel and LSASS Could Allow Elevation of Privilege (885835)," to address these vulnerabilities and recommends that affected users immediately apply the appropriate patch listed in the bulletin.
Discovered by Cesar Cerrudo of Application Security