CVE-2009-0079

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 through SP3 Microsoft Windows Server 2003 versions SP1 through SP2

Description The issue arises from the RPCSS service in Microsoft Windows not properly isolating processes running under the NetworkService or LocalService accounts. This allows local users to gain privileges by accessing the resources of one of the processes. An attacker could exploit this to run code with elevated privileges, potentially executing arbitrary code and taking complete control of the affected system. This could enable the attacker to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft Windows XP versions SP2 through SP3, update to a version that includes the fix for this issue. For Microsoft Windows Server 2003 versions SP1 through SP2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the RPCSS service to minimize the risk of exploitation.