Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2, and Windows 7 allow local users to gain privileges by leveraging access to a process with NetworkService credentials, as demonstrated by TAPI Server, SQL Server, and IIS processes, and related to the Windows Service Isolation feature. NOTE: the vendor states that privilege escalation from NetworkService to LocalSystem does not cross a "security boundary."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows权限许可和访问控制漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。 Windows的服务隔离功能中存在安全漏洞,拥有NetworkService权限的进程可以获得LocalSystem权限。成功利用这个漏洞要求攻击者可以控制IIS服务器上的Web内容或拥有SQL Server管理权限。
CVSS Information
N/A
Vulnerability Type
N/A