SkyRecon IDs New Microsoft Vista Vulnerability
SkyRecon research team provides information leading to patch of Vista flaw
SAN JOSE, Calif. -- SkyRecon Systems, the premier provider of unified endpoint security solutions, today announced that its research team uncovered an elevation of privilege vulnerability CVE-2007-5350 in the Microsoft® Windows® Vista™ operating system.
"Windows Vista includes many new enhancements and features which improve the overall operating system security," said Thomas Garnier, Senior Research Engineer at SkyRecon Systems, Inc. "During our ongoing research in the Windows Vista kernel and the ALPC interface, we found an important vulnerability which could be used to gain privilege and then execute code in the Vista kernel."
Affecting the kernel in both the 32-bit and 64-bit versions of Windows Vista, the identified vulnerability could allow an attacker to take complete control of the affected system. The attacker could use their increased privileges to install programs; view, modify, erase, or remove data; or even create new accounts that possess full administrative rights to the system, applications, and data.
More information regarding the vulnerability and Microsoft Security Bulletin can be found at:
Microsoft Security Bulletin MS07-066 - Important Vulnerability
"Vulnerability research is a critical component in designing generic, effective, and efficient layers of protection," said Yann Torrent, Director of Research and Development at SkyRecon Systems, Inc. "At SkyRecon Systems, our research team aims to understand each Windows component in order to identify possible threats such that comprehensive protections can be built within our unified endpoint protection solution."
Read more about:
2007About the Author(s)
You May Also Like
Is AI Identifying Threats to Your Network?
May 14, 2024Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy
May 15, 2024Safeguarding Political Campaigns: Defending Against Mass Phishing Attacks
May 16, 2024Why Effective Asset Management is Critical to Enterprise Cybersecurity
May 21, 2024Finding Your Way on the Path to Zero Trust
May 22, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024