VULHUB ™

Microsoft Security Bulletin (MS00-065) - Microsoft has released a patch for the "Still Image Service Privilege Escalation" buffer overflow vulnerability which allows a user logged onto a Windows 2000 machine from the keyboard to become an administrator on the machine. The Still Image Service is not installed by default, but is automatically installed, via plug-n-play, when a user attaches a still image device (i.e. digital camera, scanner, etc.) to a Windows 2000 host. Microsoft FAQ on this issue avalable here.

Microsoft Security Bulletin (MS00-065) - Microsoft has released a patch for the "Still Image Service Privilege Escalation" buffer overflow vulnerability which allows a user logged onto a Windows 2000 machine from the keyboard to become an administrator on the machine. The Still Image Service is not installed by default, but is automatically installed, via plug-n-play, when a user attaches a still image device (i.e. digital camera, scanner, etc.) to a Windows 2000 host. Microsoft FAQ on this issue avalable here.