Дата обнаружения
|
08/09/2015 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft Windows and related products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, gain privileges or execute arbitrary code. Below is a complete list of vulnerabilities
Technical details (2) can be exploited via creating multiple machine accounts. Denial of service caused by exploitation of (9) can lead to data loss. Exploitation of vulnerability (12) can cause allowance of unintended network traffic. Customers with disabled Hyper-V role are not affected to this vulnerability. To exploit vulnerabilities (2, 4, 6, 7, 10, 11) attacker must be logged in and specially for vulnerability (2) have sufficient permissions to create accounts. |
Пораженные продукты
|
Windows 10 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2015-2494 CVE-2015-2542 CVE-2015-2486 CVE-2015-2485 CVE-2015-2546 CVE-2015-2535 CVE-2015-2534 CVE-2015-2530 CVE-2015-2529 CVE-2015-2528 CVE-2015-2527 CVE-2015-2525 CVE-2015-2524 CVE-2015-2509 CVE-2015-2517 CVE-2015-2516 CVE-2015-2514 CVE-2015-2513 CVE-2015-2512 CVE-2015-2511 CVE-2015-2510 CVE-2015-2519 CVE-2015-2518 CVE-2015-2506 CVE-2015-2507 CVE-2015-2508 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
SB
[?]
WLF
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Lync Microsoft Office Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 Microsoft Windows Media Center |
CVE-IDS
|
CVE-2015-24949.3Critical
CVE-2015-25429.3Critical CVE-2015-24869.3Critical CVE-2015-24859.3Critical CVE-2015-25466.9High CVE-2015-25354.0Warning CVE-2015-25341.9Warning CVE-2015-25309.3Critical CVE-2015-25292.1Warning CVE-2015-25287.2High CVE-2015-25277.2High CVE-2015-25257.2High CVE-2015-25247.2High CVE-2015-25099.3Critical CVE-2015-25176.9High CVE-2015-25164.3Warning CVE-2015-25149.3Critical CVE-2015-25139.3Critical CVE-2015-25127.2High CVE-2015-25116.9High CVE-2015-25109.3Critical CVE-2015-25199.3Critical CVE-2015-25186.9High CVE-2015-25069.3Critical CVE-2015-25077.2High CVE-2015-25087.2High |