Wednesday, January 03, 2007

Public Microsoft Vista 0-day Exploit

Via eEye Research.

A new exploit has been posted to Full Disclosure which describes an attack which allows a logged in user to elevate their privileges to SYSTEM. eEye Research has verified that this public exploit does work as advertised.

This exploit represents the first public exploit for the Vista platform, which is attacking the first public zero-day for Vista as well. The technical nitty-gritty for this vulnerability can be found on the eEye Research ZDT.

More here.

Also posted at milw0rm.com.

0 Comments:

Post a Comment

<< Home