OLE Elevation of Privilege in Microsoft Windows Products
CVE-2015-2416

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2003 Server; Windows Rt; Windows 8.1; Windows Server 2008
Vendor: CVE Published:; 14 July 2015

What is CVE-2015-2416?

The OLE vulnerability in various Microsoft Windows products allows remote attackers to exploit crafted input to escalate privileges, transitioning from Low Integrity to Medium Integrity. This flaw poses a significant risk, enabling unauthorized users to execute actions with elevated permissions, potentially compromising system integrity.

References

http://www.securitytracker.com/id/1032906

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

16% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 14, 2015
Vulnerability Reserved
Mar 19, 2015