OLE Elevation of Privilege Vulnerability in Microsoft Windows Products
CVE-2015-2417

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows 2003 Server; Windows Rt; Windows 8.1; Windows Server 2008
Vendor: CVE Published:; 14 July 2015

What is CVE-2015-2417?

The OLE vulnerability in Microsoft Windows allows remote attackers to exploit crafted inputs to elevate privileges on affected systems. This flaw is present in various versions of Windows operating systems, enabling a potential transition from Low Integrity to Medium Integrity, which can be exploited to perform unauthorized actions within a system's environment. This vulnerability affects numerous platforms, underscoring the importance of keeping systems updated and secure.

References

http://www.securitytracker.com/id/1032906

vdb-entryx_refsource_SECTRACK

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 14, 2015
Vulnerability Reserved
Mar 19, 2015