On November 27, 2013, Microsoft issued a Security Advisory regarding the recent discovery of a Zero-Day Vulnerability in a Kernel Component of Windows XP and Windows Server 2003. The advisory states that the Microsoft Windows' Kernel "NDProxy.sys" Local Privilege-Escalation Vulnerability (C.V.E.-2013-5065) can allow an attacker to execute arbitrary code with kernel-level privileges. Successful exploits will result in the complete compromise of affected computers.
- Blog: Attack Exploits Windows Zero-Day Elevation-Of-Privilege Vulnerability