Skip to main content

Microsoft Windows Consent UI Impersonation Vulnerability

Last Update Date: 28 Jan 2011 Release Date: 15 Dec 2010 5536 Views

RISK: Medium Risk

An elevation of privilege vulnerability exists in the way that the Consent User Interface (UI) improperly processes special values read from the registry. The vulnerability could allow an attacker to run code with elevated privileges. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.