Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbNils SommerEDB-ID:38267
HistorySep 22, 2015 - 12:00 a.m.

Microsoft Windows Kernel - 'UserCommitDesktopMemory' Use-After-Free (MS15-073)

2015-09-2200:00:00
Nils Sommer
www.exploit-db.com
25

AI Score

7.4

Confidence

Low

JSON
Source: https://code.google.com/p/google-security-research/issues/detail?id=335

Freed memory is accessed after switching between two desktops of which one is closed. The testcase crashes with and without special pool enabled. The attached crash output is with special enabled on win32k.sys and ntoskrnl.sys.

Proof of Concept:
https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/38267.zip

Related

cvelist 1
prion 1
symantec 1
cve 1
nvd 1
nessus 1
openvas 1
kaspersky 1
securityvulns 1
cvelist
cvelist
CVE-2015-2365
2015-07-14 22:00:00
prion
prion
Privilege escalation
2015-07-14 22:59:00
symantec
symantec
Microsoft Windows Kernel 'Win32k.sys' CVE-2015-2365 Local Privilege Escalation Vulnerability
2015-07-14 00:00:00
cve
cve
CVE-2015-2365
2015-07-14 22:59:01
nvd
nvd
CVE-2015-2365
2015-07-14 22:59:01
nessus
nessus
MS15-073: Vulnerabilities in Windows Kernel-Mode Driver Could Allow Elevation of Privilege (3070102)
2015-07-14 00:00:00
openvas
openvas
Microsoft Windows Kernel-Mode Driver Privilege Elevation Vulnerabilities (3070102)
2015-07-15 00:00:00
kaspersky
kaspersky
KLA10631 Multiple vulnerabilities in Microsoft Windows
2015-07-14 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-07-19 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:38267
cvelist1prion1symantec1cve1nvd1nessus1openvas1kaspersky1securityvulns1