KLA10542
Multiple vulnerabilities in Microsoft Kernel-Mode Driver
Updated: 06/01/2019
Detect date
?
03/10/2015
Severity
?
Critical
Description

Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, cause denial of service and obtain sensitive information.

Below is a complete list of vulnerabilities

  1. Improper address information restrictions, improper token validation and improper functions intialization can be exploited locally via a specially designed application;
  2. Unknown vulnerability can be exploited locally via a specially designed application.
Affected products

Windows Server 2003 x86, x64, Itamium-based Service Pack 2
Windows Vista x86, x64 Service Pack 2
Windows Server 2008 x86, x64, Itanium-based Service Pack 2
Windows 7 x86, x64 Service Pack 1
Windows Server 2008 R2 x64, Itanium-based Service Pack 1
Windows 8, 8.1 x86, x64
Windows RT, RT 8.1

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

MS15-023
CVE-2015-0077
CVE-2015-0078
CVE-2015-0095
CVE-2015-0094

Impacts
?
OSI 
[?]

DoS 
[?]

SB 
[?]

PE 
[?]
Related products
Microsoft Windows Vista
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Server 2003
Windows RT
CVE-IDS
?
Microsoft official advisories
Microsoft Security Update Guide
KB list

3034344