CVE-2010-1886

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP versions SP2 and SP3 Microsoft Windows Server 2003 version SP2 Microsoft Windows Vista versions SP1 and SP2 Microsoft Windows Server 2008 versions SP2 and R2 Microsoft Windows 7 (affected versions not specified)

Description The issue allows local users to gain privileges by leveraging access to a process with NetworkService credentials. This can be demonstrated through processes such as TAPI Server, SQL Server, and IIS, and is related to the Windows Service Isolation feature.

Recommendations For Microsoft Windows XP versions SP2 and SP3, consider restricting access to processes running with NetworkService credentials to minimize the risk of exploitation. For Microsoft Windows Server 2003 version SP2, restrict access to sensitive resources that could be leveraged by an attacker with NetworkService credentials. For Microsoft Windows Vista versions SP1 and SP2, limit the privileges of the NetworkService account to reduce the potential impact of an attack. For Microsoft Windows Server 2008 versions SP2 and R2, apply configuration changes to prevent NetworkService from being used to gain elevated privileges. For Microsoft Windows 7, at the moment, there is no information about a newer version that contains a fix for this vulnerability.