Home
Resources
Training
About Us
eStore

>

resources > bulletins > MS06-075

 

 

 

 

 

 

 

Latest Blog: Log monitoring and the Terry Childs/City of San Francisco debacle

  

Microsoft Security Bulletin MS06-075 - Vulnerability in Windows Could Allow Elevation of Privilege (926255)

This is a elevation of privilege vulnerability in the CRSS subsystem that primarily affect least-privilege workstation and terminal services environments where the end-user does not already have local administrator authority. This vulnerability only affects XP and 2003 without SP1. Since vulnerability details are not public I recommend testing and then patching. Remember that it is really only a risk if you have end-user accessible workstations or your end-users are not local administrators of their workstations.

Get this valuable commentary each month as soon as Microsoft releases security updates!

Free log parser scripts, a clear explanation of Microsoft's latest security bulletin, helpful security tips, how-to's and more.

Email address:
 

Newsletter archive
Your e-mail address will be held strictly confidential and you can unsubscribe at any time.


Upcoming Webinars by Randy Franklin Smith

IT Audit: Understanding Active Directory Structure and How It Makes Auditing AD Different

Security Log Secrets: Auditing Unauthorized, Unrecognized Software

Filling the Gap in Windows Configuration Baselining


Additional Links

A
D
V

NEW! GFI EventsManager 8 Extends Event Management Capabilities. Find Out More.

Get Randy's Security Log Resource Kit


Ultimate Windows Security is a division of Monterey Technology Group, Inc. ©2006-2007 Monterey Technology Group, All rights reserved.
Disclaimer: We do our best to provide quality information and expert commentary but use all information at your own risk.

Site Map