67988 : Microsoft Windows Print Spooler Service RPC Impersonation StartDocPrinter Procedure Remote Code Execution
Printer | http://osvdb.org/67988 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
30	3292	over 2 years ago	19 days ago	25 times	100%

Timeline

Disclosure Date
2010-09-14

Description

Windows contains a flaw that may allow a remote attacker to execute arbitrary code. The issue is triggered by a flaw in the Print Spooler service, which fails to restrict access to print spoolers via RPC.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: Vendor Verified, Discovered in the Wild

Solution

Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows XP	SP3
	Windows Vista	SP1
	Windows Vista	SP2
	Windows Server 2008	SP2
	Windows Server 2008	SP0
	Windows 7	SP0
	Windows Server 2003	SP2
	Windows Server 2008 R2	SP0
	Windows XP Professional 64-bit Edition	SP2

References

CVE ID: 2010-2729 (see also: NVD)
Microsoft Knowledge Base Article: 2347290
Secunia Advisory ID: 41292
Bugtraq ID: 43073
Metasploit ID: 67988
Other Advisory URL: http://newsoft-tech.blogspot.com/2010/09/ms10-061-this-is-not-0day-you-are.html
http://newsoft.dyndns.org/tech/PrintYourShell.pdf
http://www.crysys.hu/skywiper/skywiper.pdf
http://www.us-cert.gov/control_systems/pdf/JSAR-12-151-01.pdf
http://www.us-cert.gov/control_systems/pdf/JSAR-12-151-01A.pdf
News Article: http://www.eweek.com/c/a/Security/Microsoft-Releases-Security-Patches-for-11-Vulnerabilities-251197/
http://www.eweek.com/c/a/Security/Sophisticated-Stuxnet-Worm-Uses-4-Microsoft-Zeroday-Bugs-629672/
http://www.securelist.com/en/blog/208193522/The_Flame_Questions_and_Answers
http://www.theregister.co.uk/2010/09/10/ms_patch_tuesday_pre_alert/
http://www.wired.com/threatlevel/2013/03/flame-windows-update-copycat/
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/bulletin/ms10-sep.mspx
Microsoft Security Bulletin: MS10-061

Tools & Filters

	49219 49286
	ms10_061

Credit

CVSSv2 Score

CVSSv2 Base Score = 9.3
Source: nvd.nist.gov | Generated: 2010-09-16 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Timeline

Description

Classification

Solution

Products

Microsoft Corporation

Windows XP

Windows Vista

Windows Server 2008

Windows 7

Windows Server 2003

Windows Server 2008 R2

Windows XP Professional 64-bit Edition

References

Tools & Filters

Credit

CVSSv2 Score

Comments