Vulnerability Manager Plus

ms08-066: vulnerability in the microsoft ancillary function driver could allow elevation of privilege for Windows XP x64 Edition (KB956803)

Risk Information

Base Score

7.3

MODERATE

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

1.347%

CVE Information

Source CVE
CVE-2008-3464

Associated CVE
CVE-2008-3464

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
6564

Patch Description
Security Update for Windows XP x64 Edition (KB956803)

References

http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx
http://marc.info/?l=bugtraq&m=122479227205998&w=2
http://secunia.com/advisories/32261
http://www.microsoft.com/technet/security/Bulletin/MS08-066.mspx
http://www.securityfocus.com/archive/1/archive/1/497375/100/0/threaded
http://www.securityfocus.com/bid/31673
http://www.securitytracker.com/id?1021053
http://www.us-cert.gov/cas/techalerts/TA08-288A.html
http://www.vupen.com/english/advisories/2008/2817
https://exchange.xforce.ibmcloud.com/vulnerabilities/45578
https://exchange.xforce.ibmcloud.com/vulnerabilities/45582
https://www.exploit-db.com/exploits/6757