Vulnerability Details : CVE-2015-0001
The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary process-memory locations by leveraging administrative privileges, aka "Windows Error Reporting Security Feature Bypass Vulnerability."
Products affected by CVE-2015-0001
- cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:-:gold:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:x64:*:*
- cpe:2.3:o:microsoft:windows_rt:-:gold:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-0001
0.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 13 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-0001
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.9
|
LOW | AV:L/AC:M/Au:N/C:P/I:N/A:N |
3.4
|
2.9
|
NIST |
CWE ids for CVE-2015-0001
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-0001
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/99513
Microsoft Windows Error Reporting security bypass CVE-2015-0001 Vulnerability Report
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/99514
Microsoft Knowledge Base Article 3004365 is not installed CVE-2015-0001 Vulnerability Report
-
http://secunia.com/advisories/62134
Sign in
-
http://www.securityfocus.com/bid/71927
Microsoft Windows Error Reporting CVE-2015-0001 Local Security Bypass Vulnerability
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-006
Microsoft Security Bulletin MS15-006 - Important | Microsoft Docs
-
http://packetstormsecurity.com/files/134392/Microsoft-Windows-8.1-Ahcache.sys-NtApphelpCacheControl-Privilege-Escalation.html
Microsoft Windows 8.1 Ahcache.sys/NtApphelpCacheControl Privilege Escalation ≈ Packet Storm
Jump to