CVE-2015-0094

11.03.2015, 10:59

The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly restrict the availability of address information during a function call, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	2.1 UNKNOWN	LOCAL	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N
microsoft	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 85%

Vendor	Product	Version
microsoft	windows_7	-
microsoft	windows_8	-
microsoft	windows_8.1	-
microsoft	windows_rt	-
microsoft	windows_rt_8.1	-
microsoft	windows_server_2003	-
microsoft	windows_server_2008	-
microsoft	windows_server_2012	-
microsoft	windows_vista	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References

http://www.securitytracker.com/id/1031897

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-023

http://www.securitytracker.com/id/1031897

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-023