Security 10748 Published by

Microsoft updated security bulletin MS11-056 Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2507938)



Severity Rating: Important - Revision Note: V1.1 (July 21, 2011): Added a link to Microsoft Knowledge Base Article 2507938 under Known Issues in the Executive Summary.

Summary: This security update resolves five privately reported vulnerabilities in the Microsoft Windows Client/Server Run-time Subsystem (CSRSS). The vulnerabilities could allow elevation of privilege if an attacker logs on to a user's system and runs a specially crafted application. An attacker must have valid logon credentials and be able to log on locally to exploit the vulnerabilities.
  MS11-056 - Important: Vulnerabilities in Windows Client/Server Run-time Subsystem Could Allow Elevation of Privilege (2507938) - Version:1.1