CVE-2008-1436

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fix, including Windows XP Professional SP2, Vista, Server 2003, and Server 2008

Description The issue is related to the improper management of the SeImpersonatePrivilege user right, allowing context-dependent attackers to gain privileges. This is due to the Microsoft Distributed Transaction Coordinator (MSDTC) transaction facility leaving a NetworkService token that can be impersonated by any process that calls into it. An attacker who successfully exploits this issue could execute arbitrary code and take complete control of an affected system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Windows XP Professional SP2, Vista, Server 2003, and Server 2008, update to a version that includes the fix for this issue to prevent privilege escalation. For systems where updating is not immediately possible, consider restricting the SeImpersonatePrivilege user right to minimize the risk of exploitation.