Vulnerabilities Threats

English Russian Japanese LatAm Türkiye Brasil France Český Deutschland

KLA10559
Privileges escalation in Microsoft products

Updated: 06/18/2020
Detect date
?
 04/14/2015
Severity
?
 Critical
Description

Multiple improper impersonation levels handling were found in Microsoft products. By exploiting these vulnerabilities malicious users can gain privileges. These vulnerabilities can be exploited locally via a specially designed application.
Affected products

Windows Server 2003 x86, x64, Itanium Service Pack 2
Windows Server 2003 R2 x86, x64 Service Pack 2
Windows Vista x86, x64 Service Pack 2
Windows Server 2008 x86, x64, Itanium Service Pack 2
Windows Server 2008 R2 x64, Itanium Service Pack 1
Windows 8 x86, x64
Windows 8.1 x86, x64
Windows Server 2012
Windows Server 2012 R2
Windows RT
Windows RT 8.1
Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Original advisories

MS15-038
CVE-2015-1643
CVE-2015-1644
Impacts
?
PE 
[?]
Related products
 Microsoft Windows Vista
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Server 2003
Windows RT
CVE-IDS
?
CVE-2015-16437.2High
CVE-2015-16447.2High
Microsoft official advisories
 Microsoft Security Update Guide
KB list

3045999
3045685
Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.
Find out the statistics of the vulnerabilities spreading in your region
© 2021 AO Kaspersky Lab. All Rights Reserved.
Privacy Policy

Up