Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10580
HistoryMay 12, 2015 - 12:00 a.m.

KLA10580 Multiple vulnerabilities in Microsoft products

2015-05-1200:00:00
Kaspersky Lab
threats.kaspersky.com
88

6.7 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.927 High

EPSS

Percentile

99.0%

JSON

Detect date:

05/12/2015

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Microsoft products. Malicious users can exploit these vulnerabilities to bypass security restrictions, cause denial of service, gain privileges or obtain sensitive information.

Affected products:

Windows Server 2003 x86, x64, Itanium Service Pack 2
Windows Vista x86, x64 Service Pack 2
Windows Server 2008 x86, x64, Itanium Service Pack 2
Windows 7 x86, x64 Service Pack 1
Windows Server 2008 R2 x64, Itanium Service Pack 1
Windows 8, 8.1 x86, x64
Windows Server 2012
Windows Server 2012 R2
Windows RT
Windows RT 8.1

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

Microsoft bulletin
CVE-2015-1686
CVE-2015-1684
CVE-2015-1702
CVE-2015-1679
CVE-2015-1678
CVE-2015-1680
CVE-2015-1672
CVE-2015-1701
CVE-2015-1677
CVE-2015-1676
CVE-2015-1681
CVE-2015-1674
CVE-2015-1673
CVE-2015-1716

Impacts:

ACE

Related products:

Microsoft Windows Vista

CVE-IDS:

CVE-2015-16864.3Warning
CVE-2015-16844.3Warning
CVE-2015-17026.9High
CVE-2015-16792.1Warning
CVE-2015-16782.1Warning
CVE-2015-16802.1Warning
CVE-2015-16725.0Warning
CVE-2015-17017.2High
CVE-2015-16772.1Warning
CVE-2015-16762.1Warning
CVE-2015-16811.9Warning
CVE-2015-16744.6Warning
CVE-2015-16739.3Critical
CVE-2015-17165.0Warning

Microsoft official advisories:

KB list:

3045171
3050941
3049563
3050946
3050945
3032655
3055642
3023221
3051768
3035490
3023219
3050514
3057263
3023211
3023213
3023215
3023217
3032662
3032663
3023220
3057134
3023222
3061518
3057191
3035489
3035488
3035487
3035486
3035485
3023223
3023224

Exploitation:

This vulnerability can be exploited by the following malware:

References

Related

nessus 8
mskb 4
openvas 7
prion 14
cve 14
securityvulns 1
checkpoint_advisories 7
symantec 14
zdi 8
packetstorm 2
canvas 1
seebug 1
fireeye 3
zdt 2
myhack58 2
exploitpack 1
metasploit 1
attackerkb 1
cisa_kev 1
exploitdb 2
threatpost 5
korelogic 1
thn 1
trellix 2
talosblog 1
kaspersky 1
nessus
nessus
MS15-051: Vulnerabilities in Windows Kernel-Mode Drivers Could Allow Elevation of Privilege (3057191)
2015-05-12 00:00:00
MS15-048: Vulnerabilities in .NET Framework Could Allow Elevation of Privilege (3057134)
2015-05-12 00:00:00
MS15-053: Vulnerabilities in JScript and VBScript Scripting Engines Could Allow Security Feature Bypass (3057263)
2015-05-12 00:00:00
mskb
mskb
MS15-051: Vulnerabilities in Windows kernel-mode drivers could allow information disclosure: May 12, 2015
2015-05-12 00:00:00
MS15-053: Vulnerabilities in JScript and VBScript scripting engines could allow security feature bypass: May 12, 2015
2015-05-12 00:00:00
MS15-052: Vulnerability in Windows kernel could allow security feature bypass: May 12, 2015
2015-05-12 00:00:00
openvas
openvas
Microsoft Windows Kernel-Mode Driver Privilege Elevation Vulnerability (3045171)
2015-05-13 00:00:00
Microsoft .NET Framework Privilege Elevation Vulnerability (3057134)
2015-05-13 00:00:00
Microsoft Windows JScript & VBScript Security Bypass Vulnerability (3057263)
2015-05-13 00:00:00
prion
prion
Design/Logic Flaw
2015-05-13 10:59:00
Design/Logic Flaw
2015-05-13 10:59:00
Design/Logic Flaw
2015-05-13 10:59:00
cve
cve
CVE-2015-1677
2015-05-13 10:59:00
CVE-2015-1680
2015-05-13 10:59:00
CVE-2015-1679
2015-05-13 10:59:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-05-13 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft .NET Framework Denial of Service (MS15-048: CVE-2015-1672)
2015-05-11 00:00:00
Microsoft Internet Explorer VBScript Memory Corruption (MS15-053: CVE-2015-1684)
2015-06-07 00:00:00
Microsoft Management Console File Format Denial of Service (MS15-054; CVE-2015-1681)
2015-05-12 00:00:00
symantec
symantec
Microsoft .NET Framework CVE-2015-1673 Remote Privilege Escalation Vulnerability
2015-05-12 00:00:00
Microsoft Windows CVE-2015-1716 Information Disclosure Vulnerability
2015-05-12 00:00:00
Microsoft Windows Kernel Mode Driver CVE-2015-1677 Local Information Disclosure Vulnerability
2015-05-12 00:00:00
zdi
zdi
Microsoft Windows NtUserRealInternalGetMessage Stack Information Disclosure Vulnerability
2015-05-12 00:00:00
Microsoft Windows .MSC Stack Buffer Overflow Denial of Service Vulnerability
2015-05-12 00:00:00
Microsoft Windows NtUserGetScrollBarInfo Stack Information Disclosure Vulnerability
2015-05-12 00:00:00
packetstorm
packetstorm
Microsoft Windows ClientCopyImage Improper Object Handling
2015-06-22 00:00:00
Cellebrite UFED 7.5.0.845 Desktop Escape / Privilege Escalation
2020-05-14 00:00:00
canvas
canvas
Immunity Canvas: MS15_051
2015-04-21 10:59:00
seebug
seebug
MS15-051 Win32k ClientCopyImage Elevation of Privilege Vulnerability (CVE-2015-1701)
2017-04-25 00:00:00
fireeye
fireeye
The EPS Awakens - Part 2
2015-12-20 19:45:00
Lessons from Operation RussianDoll
2016-03-09 11:00:00
The EPS Awakens
2015-12-16 08:00:00
zdt
zdt
Microsoft Windows ClientCopyImage Improper Object Handling Exploit
2015-06-23 00:00:00
Cellebrite UFED 7.5.0.845 Desktop Escape / Privilege Escalation Vulnerability
2020-05-14 00:00:00
myhack58
myhack58
About 1 5 years 5 months to repair the two 0day-vulnerability warning-the black bar safety net
2015-05-13 00:00:00
Win32k elevation of privilege vulnerability, CVE-2 0 1 5-1 7 0 1-exp-vulnerability warning-the black bar safety net
2015-05-24 00:00:00
exploitpack
exploitpack
Microsoft Windows - Local Privilege Escalation (MS15-051)
2015-05-18 00:00:00
metasploit
metasploit
Windows ClientCopyImage Win32k Exploit
2015-06-03 11:48:23
attackerkb
attackerkb
CVE-2015-1701
2015-04-21 00:00:00
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2022-03-03 00:00:00
exploitdb
exploitdb
Microsoft Windows - ClientCopyImage Win32k (MS15-051) (Metasploit)
2015-06-24 00:00:00
Microsoft Windows - Local Privilege Escalation (MS15-051)
2015-05-18 00:00:00
threatpost
threatpost
May 2015 Microsoft Patch Tuesday Security Bulletins
2015-05-12 14:49:45
APT Groups Exploiting Patch Microsoft Office Flaw CVE-2015-2545
2016-05-25 12:58:57
Malware Dropper Built to Target European Energy Company
2016-07-12 09:31:54
korelogic
korelogic
Cellebrite Restricted Desktop Escape and Escalation of User Privilege
2020-05-14 00:00:00
thn
thn
State-Sponsored SCADA Malware targeting European Energy Companies
2016-07-13 00:12:00
trellix
trellix
Take a "NetWalk" on the Wild Side
2020-08-03 00:00:00
Take a "NetWalk" on the Wild Side
2020-08-03 00:00:00
talosblog
talosblog
China Chopper still active 9 years later
2019-08-27 08:14:42
kaspersky
kaspersky
KLA10579 Multiple vulnerabilities in Microsoft Internet Explorer
2015-05-12 00:00:00

6.7 Medium

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.927 High

EPSS

Percentile

99.0%

JSON
Related for KLA10580
nessus8mskb4openvas7prion14cve14securityvulns1checkpoint_advisories7symantec14zdi8packetstorm2canvas1seebug1fireeye3zdt2myhack582exploitpack1metasploit1attackerkb1cisa_kev1exploitdb2threatpost5korelogic1thn1trellix2talosblog1kaspersky1