KLA10470
Multiple vulnerabilities in Microsoft products
Обновлено: 17/06/2019
Дата обнаружения
10/03/2015
Уровень угрозы
Critical
Описание

Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privilleges.

Below is a complete list of vulnerabilities

  1. Unknown vulnerability can be exploited remotely via specially designed web site or file;
  2. An untrusted path vulnerability can be exploited locally via DLL hijack.
Пораженные продукты

Windows Server 2003 x86, x64, for Itanium-based Systems Service Pack 2
Windows Vista x86, x64 Service Pack 2
Windows Server 2008 x86, x64, for Itanium-based Systems Service Pack 2
Windows 7 x86, x64 Service Pack 1
Windows Server 2012, 2012 R2
Windows RT, RT 8.1

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
MS bulletin
CVE-2015-0096
CVE-2015-0081
Оказываемое влияние
?
ACE 
[?]

PE 
[?]
Связанные продукты
Microsoft Windows Vista
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
CVE-IDS
CVE-2015-00969.3Critical
CVE-2015-00819.3Critical
Microsoft official advisories
Microsoft Security Update Guide
KB list

3033889
3039066
3041836