Lucene search
HistoryOct 14, 2015 - 1:59 a.m.
CVE-2015-2548
cve-2015-2548
use-after-free vulnerability
tablet input band
windows shell
microsoft windows
remote code execution
vulnerability
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.947 High
EPSS
Percentile
99.3%
Use-after-free vulnerability in the Tablet Input Band in Windows Shell in Microsoft Windows Vista SP2 and Windows 7 SP1 allows remote attackers to execute arbitrary code via a crafted web site, aka “Microsoft Tablet Input Band Use After Free Vulnerability.”
Affected configurations
Node
microsoftwindows_7Match-sp1
ORmicrosoftwindows_vistaMatch-sp2
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:windows_7 | microsoft windows 7 | eq | - |
| microsoft:windows_vista | microsoft windows vista | eq | - |
Related
checkpoint_advisories
checkpoint_advisories
nvd
nvd
CVE-2015-2548
2015-10-14 01:59:03
symantec
symantec
prion
prion
Design/Logic Flaw
2015-10-14 01:59:00
cvelist
cvelist
CVE-2015-2548
2015-10-14 01:00:00
openvas
openvas
mskb
mskb
nessus
nessus
kaspersky
kaspersky
KLA10674 Multiple vulnerabilities in Microsoft Windows
2015-10-12 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-10-25 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.5 High
AI Score
Confidence
Low
0.947 High
EPSS
Percentile
99.3%
Related for CVE-2015-2548