Executive Summary

Title Vulnerability in Windows Could Allow Elevation of Privilege
Name KB951306 First vendor Publication 2008-04-17
Vendor Microsoft Last vendor Modification 2009-04-14
Severity (Vendor) N/A Revision 3.0

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:C/I:C/A:C)
Cvss Base Score 9 Attack Range Network
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores


Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS09-012 to address this issue. For more information about this issue, including download links for an available security update, please review MS09-012. The vulnerability addressed is the Windows MSDTC Service Isolation Vulnerability - CVE-2008-1436.

Original Source

Url : http://www.microsoft.com/technet/security/advisory/951306.mspx

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-264 Permissions, Privileges, and Access Controls

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:5891
Oval ID: oval:org.mitre.oval:def:5891
Title: Microsoft Distributed Transaction Coordinator Service Isolation Vulnerability
Description: Microsoft Windows XP Professional SP2, Vista, and Server 2003 and 2008 does not properly assign activities to the (1) NetworkService and (2) LocalService accounts, which might allow context-dependent attackers to gain privileges by using one service process to capture a resource from a second service process that has a LocalSystem privilege-escalation ability, related to improper management of the SeImpersonatePrivilege user right, as originally reported for Internet Information Services (IIS), aka Token Kidnapping.
Family: windows Class: vulnerability
Reference(s): CVE-2008-1436
Version: 8
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows Server 2008
Product(s): Microsoft Distributed Transaction Coordinator
Definition Synopsis:

CPE : Common Platform Enumeration

Os 4
Os 3
Os 2
Os 1
Os 3

OpenVAS Exploits

Date Description
2009-04-15 Name : Vulnerabilities in Windows Could Allow Elevation of Privilege (959454)
File : nvt/secpod_ms09-012.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
44580 Microsoft Windows Microsoft Distributed Transaction Coordinator (MSDTC) SeImp...

Snort® IPS/IDS

Date Description
2014-01-10 IIS ASP/ASP.NET potentially malicious file upload attempt
RuleID : 15470 - Revision : 8 - Type : FILE-EXECUTABLE

Nessus® Vulnerability Scanner

Date Description
2009-04-15 Name : A local user can elevate his privileges on the remote host.
File : smb_nt_ms09-012.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
Date Informations
2013-05-11 00:46:45
  • Multiple Updates