Microsoft confirms 17-year-old Windows vulnerability

Summary:Microsoft warns that a malicious hacker could exploit this vulnerability to run arbitrary code in kernel mode.

One day after a Google security researcher released code to expose a flaw that affects every release of the Windows NT kernel -- from Windows NT 3.1 (1993) up to and including Windows 7 (2009) -- Microsoft dropped a security advisory to acknowledge the issue and warn of the risk of privilege escalation attacks.

Microsoft warns that a malicious hacker could exploit this vulnerability to run arbitrary code in kernel mode.  For an attack to be successful, the attacker must have valid logon credentials.

The flaw does not affect Windows operating systems for x64-based and Itanium-based computers, Microsoft said.

According to Tavis Ormandy, the Google researcher who released the flaw details, Microsoft was notified about the issue in June 2009.  After waiting several months and not seeing a patch, he decided it was in the best interest of everyone to go public.

As an effective and easy to deploy workaround is available, I have concluded that it is in the best interest of users to go ahead with the publication of this document without an official patch. It should be noted that very few users rely on NT security, the primary audience of this advisory is expected to be domain administrators and security professionals.

Ormandy's advisory includes instructions for temporarily disabling the MSDOS and WOWEXEC subsystems to prevent an attack from functioning.  This can be done via Group Policy.

The mitigation in Microsoft's advisory mirrors the advice from Ormandy.

Topics: Windows, Microsoft, Operating Systems, Security, Software

About

Ryan Naraine is a journalist and social media enthusiast specializing in Internet and computer security issues. He is currently security evangelist at Kaspersky Lab, an anti-malware company with operations around the globe. He is taking a leadership role in developing the company's online community initiative around secure content managem... Full Bio

zdnet_core.socialButton.googleLabel Contact Disclosure

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

The best of ZDNet, delivered

You have been successfully signed up. To sign up for more newsletters or to manage your account, visit the Newsletter Subscription Center.
Subscription failed.