Lucene search

K

[email protected]NVD:CVE-2015-2525

HistorySep 09, 2015 - 12:59 a.m.

CVE-2015-2525

2015-09-0900:59:37

CWE-264

[email protected]

web.nvd.nist.gov

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.164 Low

EPSS

Percentile

96.0%

Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to bypass intended filesystem restrictions and delete arbitrary files via unspecified vectors, aka “Windows Task File Deletion Elevation of Privilege Vulnerability.”

Affected configurations

NVD

Node

microsoftwindows_10Match-

OR

microsoftwindows_7Match-sp1

OR

microsoftwindows_8Match-

OR

microsoftwindows_8.1Match-

OR

microsoftwindows_rtMatch-

OR

microsoftwindows_rt_8.1Match-

OR

microsoftwindows_server_2008Match-sp2

OR

microsoftwindows_server_2008Matchr2sp1itanium

OR

microsoftwindows_server_2008Matchr2sp1x64

OR

microsoftwindows_server_2012Match-

OR

microsoftwindows_server_2012Matchr2

OR

microsoftwindows_vistaMatch-sp2

References

www.securityfocus.com/bid/76653

www.securitytracker.com/id/1033494

docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-102

www.exploit-db.com/exploits/38200/

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

6.4 Medium

AI Score

Confidence

Low

0.164 Low

EPSS

Percentile

96.0%

Related for NVD:CVE-2015-2525

prion1 cvelist1 canvas1 cve1 symantec1 nessus1 openvas1 mskb1 kaspersky1 securityvulns1