===================================================================== CERT-Renater Note d'Information No. 2005/VULN616 _____________________________________________________________________ DATE : 12/10/2005 HARDWARE PLATFORM(S) : / OPERATING SYSTEM(S) : Windows 2000, Windows XP. ====================================================================== MS05-047 - Vulnerability in Plug and Play Could Allow Remote Code Execution and Local Elevation of Privilege (905749) - Affected Software: - Windows 2000 Service Pack 4 - Windows XP Service Pack 1 - Windows XP Service Pack 2 - Impact: Remote Code Execution - Version Number: 1.0 Full MS05-047 advisory: http://www.microsoft.com/technet/security/bulletin/MS05-047.mspx Vulnerability Details: Plug and Play Vulnerability - CAN-2005-2120: A remote code execution and local elevation of privilege vulnerability exists in Plug and Play that could allow an authenticated attacker who successfully exploited this vulnerability to take complete control of the affected system. The vulnerability allows an authenticated remote attacker to execute arbitrary code with SYSTEM privileges on a Windows 2000 or XP SP1 system. On Windows XP SP2, this vulnerability could be exploited by an interactive user to escalate privileges. More details are provided in the following eEye advisory: http://www.eeye.com/html/research/advisories/AD20051011c.html ====================================================================== ========================================================= Les serveurs de référence du CERT-Renater http://www.urec.fr/securite http://www.cru.fr/securite http://www.renater.fr ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 151 bd de l'Hopital | fax : 01-53-94-20-41 + + 75013 Paris | email: certsvp@renater.fr + =========================================================