Local Privilege Escalation Vulnerability in Microsoft Windows Products
CVE-2015-6173

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Server 2008; Windows Server 2012; Windows Rt; Windows 10
Vendor: CVE Published:; 9 December 2015

Summary

A vulnerability in the kernel of various Microsoft Windows operating systems allows local users to execute crafted applications that can lead to an elevation of privileges. This weakness exploits the operating systems' kernel memory routines, potentially granting unauthorized access to sensitive system functions and data. Affected versions include Windows Vista, Windows 7, Windows 8, Windows 8.1, and various Windows Server iterations. Users are advised to apply security updates promptly to mitigate this risk.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securitytracker.com/id/1034334

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Dec 9, 2015
Vulnerability Reserved
Aug 14, 2015