MS12-009: Vulnerabilities in Ancillary Function Driver Could Allow Elevation of Privilege (2645640)
14 FEB 2012
Internet Security Systems Guidance
Two privately reported vulnerabilities in afd.sys were addressed in this update. Both of these could be leveraged to gain an escalation of privilege if a local authenticated attacker ran a specially crafted program. Exploitation would allow the attacker to run code in the context of the kernel.
X-Force Database: http://xforce.iss.net/xforce/xfdb/72841