CVE-2015-2369

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Server 2008; Windows 7; Windows Vista; Windows 2003 Server
Vendor: CVE Published:; 14 July 2015

Summary

Untrusted search path vulnerability in Windows Media Device Manager in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rtf file, aka "DLL Planting Remote Code Execution Vulnerability."

References

http://www.securitytracker.com/id/1032898

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

78% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 14, 2015
Vulnerability Reserved
Mar 19, 2015

Collectors

NVD DatabaseMitre Database