Elevation of Privileges in Microsoft Windows Graphics Component
CVE-2015-2364

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2003 Server; Windows Rt; Windows 8.1; Windows Server 2008
Vendor: CVE Published:; 14 July 2015

What is CVE-2015-2364?

The Graphics Component in multiple versions of Microsoft Windows allows local users to gain elevated privileges through a specially crafted application that exploits an improper bitmap conversion process. This vulnerability potentially allows attackers to execute malicious code with elevated permissions, making it essential for users and administrators to apply security updates promptly to mitigate associated risks.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securitytracker.com/id/1032902

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 14, 2015
Vulnerability Reserved
Mar 19, 2015