Use-After-Free Vulnerability in Microsoft Windows Products
CVE-2015-1723

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Server 2008; Windows Server 2012; Windows Rt; Windows Server 2003
Vendor: CVE Published:; 10 June 2015

What is CVE-2015-1723?

A use-after-free vulnerability exists in the kernel-mode drivers of various Microsoft Windows operating systems. This flaw allows local users to exploit a crafted application to gain elevated privileges. Affected systems range from older versions, such as Windows Server 2003 and Vista, to more recent editions like Windows 7 and 8.1. Users and administrators are advised to apply the necessary updates to mitigate potential risks associated with this vulnerability.

References

https://www.exploit-db.com/exploits/38273/

exploitx_refsource_EXPLOIT-DB

http://www.securitytracker.com/id/1032525

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

8% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2015
Vulnerability Reserved
Feb 17, 2015