7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
The fix for CVE-2015-1644 doesn’t take into account process creation scenarios. If a process is created by a system service while impersonating another user their per-user drive mappings will still be used which could lead to EoP.
Recent assessments:
busterb at May 09, 2019 5:57pm UTC reported:
No known exploitable services in the wild
Assessed Attacker Value: 1
Assessed Attacker Value: 1Assessed Attacker Value: 4