Microsoft Windows contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when an error occurs in Windows Service Isolation, allowing a local attacker to leverage access to a process with NetworkService credentials to gain elevated privileges.

Currently, there are no known upgrades or patches to correct this vulnerability. It is possible to temporarily work around the flaw by implementing the following workaround: Consult the Microsoft advisory's workaround section and apply the non-security update.

• CVE ID: 2010-1886 (see also: NVD)
• Microsoft Knowledge Base Article: 2264072 982316
• Secunia Advisory ID: 40825
• Bugtraq ID: 42278
• Other Advisory URL: http://argeniss.com/research/TokenKidnappingRevengePaper.pdf
• Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/advisory/2264072.mspx

• Cesar Cerrudo - Argeniss