Microsoft is investigating new public reports of a vulnerability which could allow elevation of privilege from authenticated user to LocalSystem. Affecting Windows XP Professional Service Pack 2 and all supported versions and editions of Windows Server 2003, Windows Vista, and Windows Server 2008.
Microsoft Issues Windows Server Security Alert
Customers who allow user-provided code to run in an authenticated context. Such as within Internet Information Services (IIS) and SQL Server, should review this advisory. Hosting providers may be at increased risk from this elevation of privilege vulnerability.
Currently, Microsoft is not aware of any attacks attempting to exploit the potential vulnerability. Upon completion of this investigation, Microsoft will take the appropriate action to protect our customers. Which may include providing a solution through a service pack. Our monthly security update release process, or an out-of-cycle security update, depending on customer needs.
Bulletproof your discount
Click here to learn how to bulletproof your discount dedicated server. Our Basic Firewall service places you behind a fault-tolerant pair of Cisco PIX 515 with 64MB of memory running Cisco Secure Software. Each server protected by the shared firewall will be in a shared VLAN with the other servers being protected. Click here to learn more.
ServerPronto offers affordable and secure dedicated servers and cloud hosting service packages.
Comments are closed.