Title

Microsoft Windows Service Control Manager Privilege Escalation Vulnerability (Cat II impact)

Discussion

Microsoft has released a security bulletin addressing multiple privilege escalation vulnerability in Microsoft Service Control Manager. The Service Control Manager (SCM) maintains a database of the installed services and driver services that allow the operating system to start successfully, and provides a unified and secure means of controlling them. To exploit this vulnerability, an attacker would convince an authenticated user to execute a malicious application. If successfully exploited, this vulnerability would allow an attacker to execute arbitrary code within the context of the Service Control Manager (services.exe) and compromise the affected system.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-40300

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.