=====================================================================
                                    CERT-Renater

                         Note d'Information No. 2007/VULN506
_____________________________________________________________________

DATE                      : 12/12/2007

HARDWARE PLATFORM(S)      : /

OPERATING SYSTEM(S)       : Windows XP, Windows Server 2003 running
                                               Macrovision Driver.

======================================================================
http://www.microsoft.com/technet/security/bulletin/MS07-067.mspx
______________________________________________________________________

Microsoft Security Bulletin MS07-067  Important
Vulnerability in Macrovision Driver Could Allow Local Elevation of
Privilege (944653)

This important security update resolves one publicly disclosed
vulnerability.
A local elevation of privilege vulnerability exists in the way that the
Macrovision driver incorrectly handles configuration parameters. A local
attacker who successfully exploited this vulnerability could take
control of the system. An attacker could then install programs; view,
change, or delete data; or create new accounts with full administrative
rights.

This is an important security update for supported editions of Windows
XP and Windows Server 2003.

This security update also addresses the vulnerability first described in
Microsoft Security Advisory 944653.


Affected Software

     Windows XP Service Pack 2
     Windows XP Professional x64 Edition
     Windows XP Professional x64 Edition Service Pack 2
     Windows Server 2003 Service Pack 1
     Windows Server 2003 Service Pack 2
     Windows Server 2003 x64 Edition
     Windows Server 2003 x64 Edition Service Pack 2


Vulnerability Information
	
Macrovision Driver Vulnerability
CVE-2007-5587

A local elevation of privilege vulnerability exists in the way that the
Macrovision driver incorrectly handles configuration parameters. An
attacker who successfully exploited this vulnerability could execute
arbitrary code in the context of local system. An attacker could then
install programs; view, change, or delete data; or create new accounts
with full administrative rights.

======================================================================

           =========================================================
           Les serveurs de référence du CERT-Renater
           http://www.urec.fr/securite
           http://www.cru.fr/securite
           http://www.renater.fr
           =========================================================
           + CERT-RENATER          | tel : 01-53-94-20-44          +
           + 151 bd de l'Hopital   | fax : 01-53-94-20-41          +
           + 75013 Paris           | email: certsvp@renater.fr     +
           =========================================================