CVE-2015-1769

2015-08-15T00:00:00
ID AKB:3E6E0AA7-D433-4266-BAA2-D7286AAD5173
Type attackerkb
Reporter AttackerKB
Modified 2020-06-05T00:00:00

Description

Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles symlinks, which allows physically proximate attackers to execute arbitrary code by connecting a crafted USB device, aka “Mount Manager Elevation of Privilege Vulnerability.”

Recent assessments:

gwillcox-r7 at November 23, 2020 6:13pm UTC reported:

Reported as exploited in the wild as part of Google’s 2020 0day vulnerability spreadsheet they made available at <https://docs.google.com/spreadsheets/d/1lkNJ0uQwbeC1ZTRrxdtuPLCIl7mlUreoKfSIgajnSyY/edit#gid=1869060786>. Original tweet announcing this spreadsheet with the 2020 findings can be found at <https://twitter.com/maddiestone/status/1329837665378725888>

Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0