Lucene search

[email protected]CVE-2015-2418

HistoryJul 20, 2015 - 6:59 p.m.

CVE-2015-2418

2015-07-2018:59:00

CWE-362

[email protected]

web.nvd.nist.gov

cve-2015-2418

msrt

race condition

vulnerability

dll

privileges

nvd

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.3%

JSON

Race condition in Microsoft Malicious Software Removal Tool (MSRT) before 5.26 allows local users to gain privileges via a crafted DLL, aka “MSRT Race Condition Vulnerability.”

Affected configurations

NVD

Node

microsoftmalicious_software_removal_toolRange≤5.25

CPENameOperatorVersion
microsoft:malicious_software_removal_toolmicrosoft malicious software removal toolle5.25

CPE	Name	Operator	Version
microsoft:malicious_software_removal_tool	microsoft malicious software removal tool	le	5.25

References

packetstormsecurity.com/files/163755/Microsoft-Windows-Malicious-Software-Removal-Tool-Privilege-Escalation.html

www.securitytracker.com/id/1032901

technet.microsoft.com/library/security/3074162

Social References

6.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

6.5 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.3%

JSON

Related for CVE-2015-2418

openvas1 prion1 nessus1 nvd1 cvelist1 threatpost1