Elevation of Privilege Vulnerability in Microsoft Windows Server 2003
CVE-2015-1768

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Server 2003; Windows 2003 Server
Vendor: CVE Published:; 10 June 2015

Summary

The vulnerability resides in win32k.sys, a core kernel-mode driver component of Microsoft Windows Server 2003 SP2 and R2 SP2. It enables local users to exploit the system by executing a specially crafted application that triggers memory corruption, leading to unauthorized elevation of privileges or potential denial of service. This flaw underscores the importance of maintaining up-to-date systems and applying relevant security patches to mitigate risks associated with local exploitation.

References

http://www.securityfocus.com/bid/75024

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1032525

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

Timeline

Vulnerability published
Jun 10, 2015
Vulnerability Reserved
Feb 17, 2015