Windows Kernel Memory Elevation Of Privilege Vulnerability

Summary

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka ‘Windows Kernel Memory Elevation of Privilege Vulnerability,’

Credit:

The information has been provided by Nils Sommer of bytegeist, working with Google Project Zero.


Details

Vulnerable Systems:
 * Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511

Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges.

CVE Information:
CVE-2015-6101

Disclosure Timeline:
Original release date: 11/11/2015
Last revised: 11/12/2015

Categories: News