Microsoft investigating LocalSystem access bug
ENT News | at | by Mike
Security personnel in Redmond are investigating a newly reported zero-day bug vulnerability in Microsoft operating systems and server systems. The bug, disclosed on Thursday by Bill Sisk, security response communications manager for Microsoft, allows escalation of privilege to occur for authenticated users under specific conditions.
Users on a given system can elevate their access privileges to LocalSystem in Windows XP, Windows Server 2003, Windows Vista and Windows Server 2008, Sisk explained in an e-mail to Redmondmag.com. It could cause havoc by giving an authenticated user inappropriate write, delete and change privileges.