McAfee > Theat Center > Vulnerability Detail Page

Timeline

8/12/2008

Vendor has provided a patch.

Description

Microsoft Windows is an industry standard operating system. A vulnerability is present in Microsoft Windows that may allow for code execution attacks. An error exists in the Event System due to improper validation checks on user subscriptions. Successful exploitation would allow code at the rights level of local system.

McAfee Product Mitigation & Recommendations

Recommendations

Download and install the patch available from Microsoft (950974): http://www.microsoft.com/technet/security/Bulletin/MS08-049.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS08-049) Microsoft Event System Vulnerability I (950974)

Signature identifier:

6061

Release date:

8/12/2008

Additional Resources

Microsoft Security Bulletin: Vulnerability in Event System Could Allow Remote Code Execution (950974)

http://www.microsoft.com/technet/security/Bulletin/MS08-049.mspx

All Information

Timeline -

8/12/2008

Vendor has provided a patch.

Description -

Microsoft Windows is an industry standard operating system. A vulnerability is present in Microsoft Windows that may allow for code execution attacks. An error exists in the Event System due to improper validation checks on user subscriptions. Successful exploitation would allow code at the rights level of local system.

McAfee Product Mitigation & Recommendations

Recommendations -

Download and install the patch available from Microsoft (950974): http://www.microsoft.com/technet/security/Bulletin/MS08-049.mspx

McAfee Product Mitigation

McAfee Foundstone

Signature:

(MS08-049) Microsoft Event System Vulnerability I (950974)

Signature identifier:

6061

Release date:

8/12/2008

Additional Resources

Additional Resources -

Microsoft Security Bulletin: Vulnerability in Event System Could Allow Remote Code Execution (950974)

http://www.microsoft.com/technet/security/Bulletin/MS08-049.mspx