13 matches found
Microsoft Windows Mount Manager Privilege Escalation Vulnerability
A privilege escalation vulnerability exists when the Windows Mount Manager component improperly processes symbolic links...
Explaining and Troubleshooting WriteCache Disk Drive Letter Assignment
This article explains the process involved on drive letter assignments for target devices and how to troubleshoot writecache drive letter changes. Background Mount Manager is the component responsible for managing volume names and drive letter assignments on windows. It has a database that is...
MS15-085: Description of the security update for Windows Mount Manager: August 11, 2015
MS15-085: Description of the security update for Windows Mount Manager: August 11, 2015 Summary This security update resolves a vulnerability in Windows that could allow elevation of privilege if an attacker inserts a malicious USB device into a target system. An attacker could then write a...
Privilege escalation
Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles symlinks, which allows physically proximate attackers to execute arbitrary code by connectin...
CVE-2015-1769
Mount Manager in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 mishandles symlinks, which allows physically proximate attackers to execute arbitrary code by connectin...
CVE-2015-1769
CVE-2015-1769 is a Windows privilege-escalation issue in the Mount Manager where symbolic link handling can be abused by inserting a malicious USB device. The vulnerability affects multiple Windows client/server releases (Vista SP2, 2008 SP2/R2, 7 SP1, 8/8.1, 2012/2012 R2, RT/RT 8.1, 10) and is c...
Microsoft Windows Mount Manager Local Elevation of Privilege Vulnerability
Microsoft Windows is a series of operating systems released by Microsoft Corporation in the U.S. Mount Manager is one of the mounter components. A local elevation of privilege vulnerability exists in Microsoft Windows Mount Manager, which can be exploited by an attacker to write a malicious binar...
Microsoft Patches USB-Related Flaw Used in Targeted Attacks
It used to be that dropping a USB stick in a parking lot in the hope that someone plugs the malicious peripheral into an important computer was the realm of penetration testers and ambitious nation-state actors. That’s just not so anymore. The practice has gone mainstream, even infiltrating popul...
Defending against CVE-2015-1769: a logical issue exploited via a malicious USB stick
Introduction Today Microsoft released update MS15-085 to address CVE-2015-1769, an important severity security issue in Mount Manager. It affects both client and server versions, from Windows Vista to Windows 10. The goal of this blog post is to provide information on the detection guidance to he...
Cumulative update for Windows 10: August 11, 2015
Resolves vulnerabilities in Internet Explorer that could allow remote code execution if a user views a specially crafted webpage in Internet Explorer.SummaryThe security update for Windows 10 that is dated August 11, 2015, includes improvements to improve the functionality of Windows 10 and...
PT-2015-3410 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to the fixed version Description: The issue is related to the Mount Manager component in Microsoft Windows, which mishandles symlinks. This allows physically proximate attackers to execute arbitrary code by...
MS15-085: Vulnerability in Mount Manager Could Allow Elevation of Privilege (3082487)
The remote Windows host is affected by an elevation of privilege vulnerability in the Mount Manager component due to improper processing of symbolic links. A local attacker can exploit this vulnerability by inserting a malicious USB device into a user's system, allowing the writing of a malicious...
VulnCheck KEV: CVE-2015-1769
A privilege escalation vulnerability exists when the Windows Mount Manager component improperly processes symbolic links...