Microsoft Windows Knowledge Base Article 968537 update is not installed (WinMs09kb968537Update)

Vuln ID: 50783
Risk Level: High risk vulnerability  High WinMs09kb968537Update
Platforms: Microsoft Windows 2000: SP4, Microsoft Windows XP: SP2, Microsoft Windows Vista, Microsoft Windows Server 2003: SP2, Microsoft Windows Server 2003: SP2 Itanium, Microsoft Windows Server 2003: SP2 x64, Microsoft Windows Vista: x64, Microsoft Windows XP: SP2 x64 Professional, Microsoft Windows Vista: SP1, Microsoft Windows Vista: SP1 x64, Microsoft Windows Server 2008: x32, Microsoft Windows Server 2008: x64, Microsoft Windows XP: SP3, Microsoft Windows Vista: SP2 x64, Microsoft Windows Vista: SP2, Microsoft Windows Server 2008: SP2 x32, Microsoft Windows Server 2008: SP2 x64, Microsoft Windows Server 2008: SP2 Itanium
Description:

Microsoft Knowledge Base Article 968537 is not installed, which could allow a remote attacker to exploit the following vulnerability:

Microsoft Windows kernel could allow a local attacker to gain elevated privileges on the system, caused by improper validation of changes in certain kernel objects. By executing a malicious application on the system, an attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.

Microsoft Windows kernel could allow a local attacker to gain elevated privileges on the system, caused by improper validation of certain pointers passed from user modes. By executing a malicious application on the system, an attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.

Microsoft Windows kernel could allow a local attacker to gain elevated privileges on the system, caused by improper validation of an argument passed to a system call. By executing a malicious application on the system, an attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.

Microsoft Windows kernel could allow a local attacker to gain elevated privileges on the system, caused by the improper validation of input passed from user mode to the kernel when setting the desktop parameter. By executing a malicious application on the system, an attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.
Remedy:

Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS09-025. See References.
False Positives:
False Negatives:
Required Permission: Windows login
Additional Information:

References:

Microsoft Security Bulletin MS09-025
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (968537)
http://www.microsoft.com/technet/security/bulletin/ms09-025.mspx

IBM Internet Security Systems X-Force Database
Microsoft Windows kernel kernel objects privilege escalation
http://xforce.iss.net/xforce/xfdb/50779

IBM Internet Security Systems X-Force Database
Microsoft Windows kernel pointer privilege escalation
http://xforce.iss.net/xforce/xfdb/50780

IBM Internet Security Systems X-Force Database
Microsoft Windows system call privilege escalation
http://xforce.iss.net/xforce/xfdb/50781

IBM Internet Security Systems X-Force Database
Microsoft Windows desktop parameter privilege escalation
http://xforce.iss.net/xforce/xfdb/50782

ISS X-Force
Microsoft Windows Knowledge Base Article 968537 update is not installed
http://www.iss.net/security_center/static/50783.php

CVE CVE-2009-1123
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1123

CVE CVE-2009-1124
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1124

CVE CVE-2009-1125
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1125

CVE CVE-2009-1126
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1126
X-Force Logo
Know Your Risks		 Mitre.org CVE Logo
Common Vulnerabilties & Exposures