ID CVE-2015-1727 Type cve Reporter NVD Modified 2017-09-22T21:29:01
Description
Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka "Win32k Pool Buffer Overflow Vulnerability."
{"title": "CVE-2015-1727", "reporter": "NVD", "published": "2015-06-09T21:59:08", "cpe": ["cpe:/o:microsoft:windows_server_2012:r2:-:~-~essentials~~~", "cpe:/o:microsoft:windows_server_2003:r2:sp2", "cpe:/o:microsoft:windows_server_2008::sp2", "cpe:/o:microsoft:windows_7::sp1:x64", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:r2:sp1", "cpe:/o:microsoft:windows_server_2012:-:gold", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x64~", "cpe:/o:microsoft:windows_8:-::~~~~x64~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~datacenter~~~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~standard~~~", "cpe:/o:microsoft:windows_8:-::~~~~x86~", "cpe:/o:microsoft:windows_server_2003::sp2", "cpe:/o:microsoft:windows_rt:-:gold", "cpe:/o:microsoft:windows_7::sp1:x86", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x86~", "cpe:/o:microsoft:windows_vista::sp2"], "cvelist": ["CVE-2015-1727"], "viewCount": 0, "objectVersion": "1.3", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1727", "bulletinFamily": "NVD", "hashmap": [{"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "bba9b99ada483da00f62f3b20589ff52", "key": "cpe"}, {"hash": "5adbd5bd8773ee83f66149be129ca933", "key": "cvelist"}, {"hash": "cfd16da9581e0c21db590e40dfd9e493", "key": "cvss"}, {"hash": "e70bfec82bf0db9ae35b77076f82fdc3", "key": "description"}, {"hash": "8256b95b48eeb9150cb63e8294543410", "key": "href"}, {"hash": "a98fd38bace3cfee5b28527123fd310a", "key": "modified"}, {"hash": "514380233ab3d0f4494772a7c2c58bd2", "key": "published"}, {"hash": "36e7ad0c42e6fc72bc03f66030b25a77", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "c2a89e52d3320069213b5cbc2b859510", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}], "history": [{"bulletin": {"reporter": "NVD", "published": "2015-06-09T21:59:08", "cvelist": ["CVE-2015-1727"], "title": "CVE-2015-1727", "objectVersion": "1.3", "description": "Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka \"Win32k Pool Buffer Overflow Vulnerability.\"", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1727", "bulletinFamily": "NVD", "id": "CVE-2015-1727", "history": [], "scanner": [], "enchantments": {}, "modified": "2017-09-15T21:29:01", "hash": "59e5db23f3d4ce27f5b7cc4216b8f0b8c6568d211df1640ef8cd9dce95f96b19", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "viewCount": 0, "edition": 2, "cpe": ["cpe:/o:microsoft:windows_server_2012:r2:-:~-~essentials~~~", "cpe:/o:microsoft:windows_server_2003:r2:sp2", "cpe:/o:microsoft:windows_server_2008::sp2", "cpe:/o:microsoft:windows_7::sp1:x64", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:r2:sp1", "cpe:/o:microsoft:windows_server_2012:-:gold", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x64~", "cpe:/o:microsoft:windows_8:-::~~~~x64~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~datacenter~~~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~standard~~~", "cpe:/o:microsoft:windows_8:-::~~~~x86~", "cpe:/o:microsoft:windows_server_2003::sp2", "cpe:/o:microsoft:windows_rt:-:gold", "cpe:/o:microsoft:windows_7::sp1:x86", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x86~", "cpe:/o:microsoft:windows_vista::sp2"], "references": ["http://technet.microsoft.com/security/bulletin/MS15-061", "https://www.exploit-db.com/exploits/38268/"], "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "bba9b99ada483da00f62f3b20589ff52", "key": "cpe"}, {"hash": "cfd16da9581e0c21db590e40dfd9e493", "key": "cvss"}, {"hash": "c2a89e52d3320069213b5cbc2b859510", "key": "title"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "75307f50c38f97c2470bc15a322c305b", "key": "references"}, {"hash": "8256b95b48eeb9150cb63e8294543410", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "e70bfec82bf0db9ae35b77076f82fdc3", "key": "description"}, {"hash": "f561b4127683bcc10f10644619a500b8", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "514380233ab3d0f4494772a7c2c58bd2", "key": "published"}, {"hash": "5adbd5bd8773ee83f66149be129ca933", "key": "cvelist"}], "lastseen": "2017-09-16T19:12:50", "assessment": {"name": "", "href": "", "system": ""}}, "differentElements": ["references", "modified"], "edition": 2, "lastseen": "2017-09-16T19:12:50"}, {"bulletin": {"reporter": "NVD", "published": "2015-06-09T21:59:08", "cvelist": ["CVE-2015-1727"], "title": "CVE-2015-1727", "objectVersion": "1.2", "description": "Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka \"Win32k Pool Buffer Overflow Vulnerability.\"", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1727", "bulletinFamily": "NVD", "id": "CVE-2015-1727", "history": [], "scanner": [], "enchantments": {}, "modified": "2015-06-10T12:41:01", "hash": "3a8694150146146e187e32f49db3a5bfb7e948886dad18532ee8f3cdeec7ca13", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "viewCount": 0, "edition": 1, "cpe": ["cpe:/o:microsoft:windows_server_2012:r2:-:~-~essentials~~~", "cpe:/o:microsoft:windows_server_2003:r2:sp2", "cpe:/o:microsoft:windows_server_2008::sp2", "cpe:/o:microsoft:windows_7::sp1:x64", "cpe:/o:microsoft:windows_rt_8.1:-", "cpe:/o:microsoft:windows_server_2008:r2:sp1", "cpe:/o:microsoft:windows_server_2012:-:gold", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x64~", "cpe:/o:microsoft:windows_8:-::~~~~x64~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~datacenter~~~", "cpe:/o:microsoft:windows_server_2012:r2:-:~-~standard~~~", "cpe:/o:microsoft:windows_8:-::~~~~x86~", "cpe:/o:microsoft:windows_server_2003::sp2", "cpe:/o:microsoft:windows_rt:-:gold", "cpe:/o:microsoft:windows_7::sp1:x86", "cpe:/o:microsoft:windows_8.1:-:-:~-~-~-~x86~", "cpe:/o:microsoft:windows_vista::sp2"], "references": ["http://technet.microsoft.com/security/bulletin/MS15-061"], "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "9827746460283d2503573eecb083603f", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "bba9b99ada483da00f62f3b20589ff52", "key": "cpe"}, {"hash": "cfd16da9581e0c21db590e40dfd9e493", "key": "cvss"}, {"hash": "c2a89e52d3320069213b5cbc2b859510", "key": "title"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "8256b95b48eeb9150cb63e8294543410", "key": "href"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "e70bfec82bf0db9ae35b77076f82fdc3", "key": "description"}, {"hash": "41aad992d8b5c9281970abc251b6bde7", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "514380233ab3d0f4494772a7c2c58bd2", "key": "published"}, {"hash": "5adbd5bd8773ee83f66149be129ca933", "key": "cvelist"}], "lastseen": "2016-09-03T22:11:07", "assessment": {"name": "", "href": "", "system": ""}}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T22:11:07"}], "scanner": [], "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "modified": "2017-09-22T21:29:01", "hash": "6e4de20a5935ffd94fa22f311ba08aef1786066fcde63a6c1ff76b00e54e314f", "enchantments": {"vulnersScore": 7.2}, "edition": 3, "description": "Buffer overflow in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges via a crafted application, aka \"Win32k Pool Buffer Overflow Vulnerability.\"", "references": ["http://www.securitytracker.com/id/1032525", "http://technet.microsoft.com/security/bulletin/MS15-061", "https://www.exploit-db.com/exploits/38268/"], "id": "CVE-2015-1727", "lastseen": "2017-09-23T10:41:37", "assessment": {"name": "", "href": "", "system": ""}}
{"result": {"symantec": [{"id": "SMNTC-75008", "type": "symantec", "title": "Microsoft Windows Kernel 'Win32k.sys' CVE-2015-1727 Local Privilege Escalation Vulnerability", "description": "### Description\n\nMicrosoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges.\n\n### Technologies Affected\n\n * Microsoft Windows 7 for 32-bit Systems SP1 \n * Microsoft Windows 7 for x64-based Systems SP1 \n * Microsoft Windows 8 for 32-bit Systems \n * Microsoft Windows 8 for x64-based Systems \n * Microsoft Windows 8.1 for 32-bit Systems \n * Microsoft Windows 8.1 for x64-based Systems \n * Microsoft Windows RT 8.1 \n * Microsoft Windows RT \n * Microsoft Windows Server 2003 Itanium SP2 \n * Microsoft Windows Server 2003 R2 Service Pack 2 \n * Microsoft Windows Server 2003 R2 x64 Edition Service Pack 2 \n * Microsoft Windows Server 2003 SP2 \n * Microsoft Windows Server 2003 x64 Edition Service Pack 2 \n * Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1 \n * Microsoft Windows Server 2008 R2 for x64-based Systems SP1 \n * Microsoft Windows Server 2008 for 32-bit Systems SP2 \n * Microsoft Windows Server 2008 for Itanium-based Systems SP2 \n * Microsoft Windows Server 2008 for x64-based Systems SP2 \n * Microsoft Windows Server 2012 \n * Microsoft Windows Server 2012 R2 \n * Microsoft Windows Vista SP2 \n * Microsoft Windows Vista x64 Edition SP2 \n\n### Recommendations\n\n**Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.** \nTo exploit this vulnerability, an attacker requires local access to an affected computer. Grant local access for trusted and accountable users only. \n\nUpdates are available. Please see the references or vendor advisory for more information.\n", "published": "2015-06-09T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.symantec.com/content/symantec/english/en/security-center/vulnerabilities/writeup.html/75008", "cvelist": ["CVE-2015-1727"], "lastseen": "2018-03-14T22:41:51"}], "exploitdb": [{"id": "EDB-ID:38268", "type": "exploitdb", "title": "Windows Kernel - Pool Buffer Overflow Drawing Caption Bar MS15-061", "description": "Windows Kernel - Pool Buffer Overflow Drawing Caption Bar (MS15-061). CVE-2015-1727. Dos exploit for win32 platform", "published": "2015-09-22T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.exploit-db.com/exploits/38268/", "cvelist": ["CVE-2015-1727"], "lastseen": "2016-02-04T07:41:59"}], "nessus": [{"id": "SMB_NT_MS15-061.NASL", "type": "nessus", "title": "MS15-061: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (3057839)", "description": "The remote Windows host is affected by multiple vulnerabilities :\n\n - An information disclosure vulnerability exists in the Windows kernel-mode driver due to improper handling of buffer elements. A local attacker can exploit this vulnerability to request the contents of specific memory addresses. (CVE-2015-1719)\n\n - An elevation of privilege vulnerability exists in the Windows kernel-mode driver due to a user-after-free error. A remote attacker can exploit this vulnerability by convincing a user to run a specially crafted application, resulting in the execution of arbitrary code in kernel mode. (CVE-2015-1720)\n\n - A elevation of privilege vulnerability exists in the Windows kernel-mode driver due to a NULL pointer dereference flaw. A remote attacker can exploit this vulnerability by convincing a user to run a specially crafted application, resulting in the execution of arbitrary code in kernel mode. (CVE-2015-1721)\n\n - Multiple elevation of privilege vulnerabilities exist in the Windows kernel-mode driver due to improper handling of objects in memory. A local attacker can exploit these vulnerabilities, with a specially crafted application, to escalate privileges to full administrative rights.\n (CVE-2015-1722, CVE-2015-1723, CVE-2015-1724, CVE-2015-1726)\n\n - Multiple elevation of privilege vulnerabilities exist in the Windows kernel-mode driver due to improperly validated user-supplied input. A local attacker can exploit these vulnerabilities, with a specially crafted application, to escalate privileges to full administrative rights. (CVE-2015-1725, CVE-2015-1727)\n\n - Multiple elevation of privilege vulnerabilities exist in the Windows kernel-mode driver due a failure to properly free memory. A local attacker can exploit these vulnerabilities, with a specially crafted application, to execute arbitrary code in the context of another user. (CVE-2015-1725, CVE-2015-1727)", "published": "2015-06-09T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=84059", "cvelist": ["CVE-2015-1720", "CVE-2015-1726", "CVE-2015-1723", "CVE-2015-1722", "CVE-2015-1719", "CVE-2015-1724", "CVE-2015-1768", "CVE-2015-1721", "CVE-2015-1725", "CVE-2015-1727", "CVE-2015-2360"], "lastseen": "2017-10-29T13:40:22"}], "openvas": [{"id": "OPENVAS:1361412562310805582", "type": "openvas", "title": "MS Windows Kernel-Mode Driver Privilege Elevation Vulnerabilities (3057839)", "description": "This host is missing an important security\n update according to Microsoft Bulletin MS15-061.", "published": "2015-06-10T00:00:00", "cvss": {"score": 7.2, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805582", "cvelist": ["CVE-2015-1720", "CVE-2015-1726", "CVE-2015-1723", "CVE-2015-1722", "CVE-2015-1719", "CVE-2015-1724", "CVE-2015-1768", "CVE-2015-1721", "CVE-2015-1725", "CVE-2015-1727", "CVE-2015-2360"], "lastseen": "2017-07-02T21:11:48"}], "kaspersky": [{"id": "KLA10599", "type": "kaspersky", "title": "\r KLA10599Multiple vulnerabilities in Microsoft Products ", "description": "### *CVSS*:\n9.3\n\n### *Detect date*:\n06/09/2015\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code or obtain sensitive information.\n\n### *Affected products*:\nWindows Server 2003 x86, x64, Itanium Service Pack 2 \nWindows Server 2003 R2 x86, x64 Service Pack 2 \nWindows Vista x86, x64 Service Pack 2 \nWindows Server 2008 x86, x64, Itanium Service Pack 2 \nWindows 7 x86, x64 Service Pack 1 \nWindows Server 2008 R2 x64, Itanium Service Pack 1 \nWindows 8 x86, x64 \nWindows 8.1 x86, x64 \nWindows Server 2012 \nWindows Server 2012 R2 \nWindows RT \nWindows RT 8.1 \n\n\n### *Solution*:\nInstall necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)\n\n### *Original advisories*:\n[MS15-060](<https://technet.microsoft.com/en-us/library/security/MS15-060>) \n[MS15-061](<https://technet.microsoft.com/en-us/library/security/MS15-061>) \n[MS15-062](<https://technet.microsoft.com/en-us/library/security/MS15-062>) \n[MS15-063](<https://technet.microsoft.com/en-us/library/security/MS15-063>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Windows RT](<https://threats.kaspersky.com/en/product/Windows-RT/>)\n\n### *CVE-IDS*:\n[CVE-2015-1758](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1758>) \n[CVE-2015-1757](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1757>) \n[CVE-2015-1756](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1756>) \n[CVE-2015-1719](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1719>) \n[CVE-2015-1768](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1768>) \n[CVE-2015-2360](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2360>) \n[CVE-2015-1722](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1722>) \n[CVE-2015-1723](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1723>) \n[CVE-2015-1720](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1720>) \n[CVE-2015-1721](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1721>) \n[CVE-2015-1726](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1726>) \n[CVE-2015-1727](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1727>) \n[CVE-2015-1724](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1724>) \n[CVE-2015-1725](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1725>) \n\n\n### *Microsoft official advisories*:\n[MS15-060](<https://technet.microsoft.com/en-us/library/security/MS15-060>)\n\n### *KB list*:\n[3062577](<http://support.microsoft.com/kb/3062577>) \n[3059317](<http://support.microsoft.com/kb/3059317>) \n[3057839](<http://support.microsoft.com/kb/3057839>) \n[3063858](<http://support.microsoft.com/kb/3063858>)", "published": "2015-06-09T00:00:00", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://threats.kaspersky.com/en/vulnerability/KLA10599", "cvelist": ["CVE-2015-1720", "CVE-2015-1726", "CVE-2015-1723", "CVE-2015-1757", "CVE-2015-1722", "CVE-2015-1719", "CVE-2015-1724", "CVE-2015-1768", "CVE-2015-1721", "CVE-2015-1725", "CVE-2015-1727", "CVE-2015-2360", "CVE-2015-1756", "CVE-2015-1758"], "lastseen": "2018-07-06T07:33:23"}]}}
