 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.805351 |
| Categoría: | Windows : Microsoft Bulletins |
| Título: | Microsoft Windows Kernel-Mode Driver Privilege Elevation Vulnerabilities (3034344) |
| Resumen: | This host is missing an important security; update according to Microsoft Bulletin MS15-023. |
| Descripción: | Summary: This host is missing an important security update according to Microsoft Bulletin MS15-023. Vulnerability Insight: Multiple flaws exist: - In the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. - In the Windows kernel-mode driver that is caused when the kernel-mode driver fails to properly validate the calling threads token. - In the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. - In the Windows kernel-mode driver that could allow the disclosure of kernel memory contents to an attacker. This vulnerability is caused when the Windows kernel-mode driver dereferences a NULL pointer. Vulnerability Impact: Successful exploitation will allow remote attackers to bypass security and gain restricted privileges. Affected Software/OS: - Microsoft Windows 8 x32/x64 - Microsoft Windows Server 2012/R2 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 2003 x32/x64 Service Pack 2 and prior - Microsoft Windows Vista x32/x64 Service Pack 2 and prior - Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior - Microsoft Windows 7 x32/x64 Service Pack 1 and prior - Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2015-0077 BugTraq ID: 72897 http://www.securityfocus.com/bid/72897 Microsoft Security Bulletin: MS15-023 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-023 http://www.securitytracker.com/id/1031897 Common Vulnerability Exposure (CVE) ID: CVE-2015-0078 BugTraq ID: 72902 http://www.securityfocus.com/bid/72902 Common Vulnerability Exposure (CVE) ID: CVE-2015-0094 Common Vulnerability Exposure (CVE) ID: CVE-2015-0095 BugTraq ID: 72936 http://www.securityfocus.com/bid/72936 |
| Copyright | Copyright (C) 2015 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |