Sigh. Well, Windows Vista seems to have it’s first OS-related security patch. It’s called "Vulnerabilities in CSRSS Could Allow Remote Code Execution (930178)" and according to the vulnerability description:
- A remote code execution vulnerability exists in the Windows Client/Server Run-time Subsystem (CSRSS) process because of the way that it handles error messages. An attacker could exploit the vulnerability by constructing a specially crafted application that could potentially allow remote code execution. Additionally, if a user viewed a specially crafted Web site, an attacker who successfully exploited this vulnerability could take complete control of an affected system.
- A privilege elevation vulnerability exists in the way that the Windows 32 Client/Server Run-time Subsystem (CSRSS) handles its connections during the startup and stopping of processes.
- A denial of service vulnerability exists in the Client/Server Run-time Subsystem (CSRSS) service because of the way it handles error messages. An attacker could exploit the vulnerability by running a specially crafted application causing the system to restart.
So if you’re using Windows Vista, patch away, but just be thankful you’re not using Windows XP any more. It looks like they’re going to have to apply this patch along with 4 others that Windows Vista doesn’t need.
DESCRIPTION:
http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx
kurtsh
Kurt Shintaku's Blog 