Vulnerability Details : CVE-2015-1515
The dwall.sys driver in SoftSphere DefenseWall Personal Firewall 3.24 allows local users to write data to arbitrary memory locations, and consequently gain privileges, via a crafted 0x00222000, 0x00222004, 0x00222008, 0x0022200c, or 0x00222010 IOCTL call.
Products affected by CVE-2015-1515
- cpe:2.3:a:softsphere:defensewall_personal_firewall:3.24:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-1515
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-1515
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
CWE ids for CVE-2015-1515
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-1515
-
http://www.exploit-db.com/exploits/36052
SoftSphere DefenseWall FW/IPS 3.24 - Local Privilege EscalationExploit
Jump to