Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||Vulnerability in Windows Kernel, Vulnerabilidad en el núcleo de Windows|
It is a group of critical vulnerabilities in Windows kernel on Windows 2003/XP/2000 computers, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user or local privilege escalation.
|First detected on:||Aug. 9, 2006|
|Detection updated on:||Aug. 9, 2006|
MS06-051 is not categorized as virus, worm, Trojan or backdoor. It is a group of critical vulnerabilities in the Windows kernel in Windows 2003/XP/2000, which allows to remotely execute arbitrary code in the vulnerable computer or a local elevation of privilege.
The addressed vulnerabilities are:
- User profile elevation of privilege vulnerability: privilege elevation vulnerability, which allows a logged on user to take complete control of the computer.
- Unhandled exception vulnerability: remote code execution vulnerability, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.
These vulnerabilities are exploited:
- User profile elevation of privilege vulnerability: by running a specially crafted DLL in the vulnerable computer. In order to do so, a hacker must be able to log on locally to the system.
- Unhandled exception vulnerability: by creating a specially crafted website and enticing users into accessing it.
Attacks can be launched across the Internet, but a firewall could be used in order to prevent those attacks.
If you have a Windows 2003/XP/2000 computer, it is recommendable to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.