Rapid7 Vulnerability & Exploit Database

MS11-014: Vulnerability in Local Security Authority Subsystem Service Could Allow Local Elevation of Privilege (2478960)

Back to Search

MS11-014: Vulnerability in Local Security Authority Subsystem Service Could Allow Local Elevation of Privilege (2478960)

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
02/08/2011
Created
07/25/2018
Added
02/09/2011
Modified
06/26/2015

Description

This security update resolves a privately reported vulnerability in the Local Security Authority Subsystem Service (LSASS) in Windows XP and Windows Server 2003. This security update is rated Important for all supported editions of these operating systems. For more information, see the subsection, Affected and Non-Affected Software, in this section.

Solution(s)

  • WINDOWS-HOTFIX-MS11-014-00291ddc-11a3-49b2-a4e1-dd01cf4a7944
  • WINDOWS-HOTFIX-MS11-014-4b8fa40d-c9dc-4cca-871a-da7a4971e5eb
  • WINDOWS-HOTFIX-MS11-014-4d287ad6-a11b-4432-880e-f7a18c3529e0
  • WINDOWS-HOTFIX-MS11-014-7b7d1543-d120-4a45-ae24-7095e07fc4fd
  • WINDOWS-HOTFIX-MS11-014-d19adf09-1c56-4f85-830f-e14037c39633

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;