..
Click anywhere to stop
Click anywhere to stop
Дата обнаружения
|
10/11/2015 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to spoof user interface, cause denial of service, gain privileges, bypass security restrictions, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities
Technical details Vulnerability (4) can lead to Kernel ASLR bypass. Vulnerability (7) caused by not checking buffer size prior to copy memory into it. Vulnerability (8) caused by not checking memory address validity before call. To exploit (10) remote attacker must cause man-in-the-middle attack between client and legitimate server. By exploiting this vulnerability attacker can impersonate victim on any other server that uses credentials same with attacked. Vulnerability (11) caused by failing to check the password change of a user signing into a workstation. By exploiting this vulnerability attacker can bypass Kerberos authentication and decrypt drives protected by BitLocker. Vulnerability (12) has multiple described mitigations designed to prevent opening malicious log file. Short list placed further, for full description look at MS15-115 advisory. Mitigations: do not open suspicious .jnt files; remove .jnt file association; remove Windows Journal; deny access to Journal.exe. |
Пораженные продукты
|
Microsoft Windows 10 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2015-6064 CVE-2015-6113 CVE-2015-6078 CVE-2015-2478 CVE-2015-6088 CVE-2015-6098 CVE-2015-6097 CVE-2015-6073 CVE-2015-6100 CVE-2015-6112 CVE-2015-6111 CVE-2015-6109 CVE-2015-6104 CVE-2015-6103 CVE-2015-6102 CVE-2015-6101 CVE-2015-6095 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
SB
[?]
PE
[?]
SUI
[?]
|
Связанные продукты
|
Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 |
CVE-IDS
|
CVE-2015-60649.3Critical
CVE-2015-61132.1Warning CVE-2015-60789.3Critical CVE-2015-24787.2High CVE-2015-60884.3Warning CVE-2015-60987.2High CVE-2015-60979.3Critical CVE-2015-60739.3Critical CVE-2015-61006.9High CVE-2015-61125.8High CVE-2015-61116.8High CVE-2015-61092.1Warning CVE-2015-61049.3Critical CVE-2015-61039.3Critical CVE-2015-61022.1Warning CVE-2015-61016.9High CVE-2015-60954.9Warning |