2 matches found
CVE-2015-7359
CVE-2015-7359 concerns the Windows kernel driver in TrueCrypt 7.0, VeraCrypt (before 1.15), and CipherShed. The flaw: IsVolumeAccessibleByCurrentUser and MountDevice do not validate the impersonation level of tokens, allowing local users to impersonate a user at SecurityIdentify level and access ...
CVE-2015-7359
The 1 IsVolumeAccessibleByCurrentUser and 2 MountDevice methods in Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, do not check the impersonation level of impersonation tokens, which allows local users to impersonate a user at SecurityIdentify level an...