Description
Unknown vulnerability in the hosting process (dllhost.exe) for Microsoft Internet Information Server (IIS) 4.0 through 5.1 allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges, aka "Out of Process Privilege Elevation."
Remediation
References
Related Vulnerabilities
WordPress Plugin BuddyPress Security Bypass (2.3.4)
WordPress Plugin Share Buttons by AddThis Cross-Site Request Forgery (5.3.5)
Moodle Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2009-0499)
WordPress Plugin GiveWP-Donation and Fundraising Platform Security Bypass (2.5.9)
WordPress Plugin Advanced Dynamic Pricing for WooCommerce Multiple Vulnerabilities (4.1.5)