CVE-2007-5352

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 2000 SP4, XP SP2, and Server 2003 SP1 and SP2

Description The issue is related to the improper handling of local procedure call (LPC) requests by the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows. This could allow an attacker to run code with elevated privileges, potentially taking complete control of an affected system. The attacker could then install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.