First published: Thu Jun 16 2011(Updated: )
The Ancillary Function Driver (AFD) in afd.sys in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 does not properly validate user-mode input, which allows local users to gain privileges via a crafted application, aka "Ancillary Function Driver Elevation of Privilege Vulnerability."
Credit: secure@microsoft.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows Server | =sp2 | |
Microsoft Windows Server | =r2 | |
Microsoft Windows Server | =r2 | |
Microsoft Windows Server | =sp2 | |
Microsoft Windows XP | =sp2 | |
Microsoft Windows 7 | =sp1 | |
Microsoft Windows Server | ||
Microsoft Windows Server | ||
Microsoft Windows XP | =sp3 | |
Microsoft Windows Server | =sp2 | |
Microsoft Windows Vista | =sp1 | |
Microsoft Windows Server | =sp2 | |
Microsoft Windows 7 | =sp1 | |
Microsoft Windows Vista | =sp2 | |
Microsoft Windows Server 2003 | =sp2 | |
Microsoft Windows Server |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2011-1249 has a severity rating of important, indicating that it can be exploited by local users to gain elevated privileges.
To fix CVE-2011-1249, users should apply the patch provided in the Microsoft Security Bulletin MS11-046.
CVE-2011-1249 affects Microsoft Windows XP, Windows Server 2003, Windows Vista, Windows 7, and several versions of Windows Server 2008.
CVE-2011-1249 is a local privilege escalation vulnerability due to improper validation of user-mode input in the Ancillary Function Driver.
CVE-2011-1249 cannot be exploited remotely; it requires local access to the affected system.