Multiple vulnerabilities in Microsoft products

Описание

Multiple critical vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to fain privileges, bypass security restrictions or cause denial of service.

Below is a complete list of vulnerabilities

1. A double-free and other unknown vulnerability can be exploited locally via a specially designed applications;
2. An unknown vulnerability can be exploited locally via specially designed TrueType font;
3. Improper work with impersonation token can be exploited locally via an unknown vectors.

Первичный источник обнаружения

• MS advisory
  CVE-2015-0057
  CVE-2015-0060
  CVE-2015-0058
  CVE-2015-0059
  CVE-2015-0010
  CVE-2015-0003
  

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

• Microsoft-Windows-Vista-2
• Microsoft-Windows-Server-2012
• Microsoft-Windows-8
• Microsoft-Windows-7
• Microsoft-Windows-Server-2008
• Microsoft-Windows-Server-2003
• Windows-RT

Список CVE

• CVE-2015-0057
  high
• CVE-2015-0060
  warning
• CVE-2015-0058
  high
• CVE-2015-0059
  high
• CVE-2015-0010
  warning
• CVE-2015-0003
  high

Список KB

• 3037639
• 3013455
• 3036220
• 3023562

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com