(MS14-002) Vulnerability in Windows Kernel Could Allow Elevation of Privilege (2914368)

  Severity: HIGH
  CVE Identifier: CVE-2013-5065
  Advisory Date: MAR 04, 2014

  DESCRIPTION

This security update resolves a publicly disclosed vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker logs on to a system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit this vulnerability.

  SOLUTION

  AFFECTED SOFTWARE AND VERSION

  • Windows XP Service Pack 3
  • Windows XP Professional x64 Edition Service Pack 2
  • Windows Server 2003 Service Pack 2
  • Windows Server 2003 x64 Edition Service Pack 2
  • Windows Server 2003 with SP2 for Itanium-based Systems