CVE-2015-2367 : win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R

win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to obtain sensitive information from uninitialized kernel memory via a crafted application, aka "Win32k Information Disclosure Vulnerability."

Published 2015-07-14 22:59:04

Updated 2019-05-08 22:03:16

Source Microsoft Corporation

View at NVD, CVE.org

Vulnerability category: Information leak

Products affected by CVE-2015-2367

Microsoft » Windows 2003 Server » Update SP2
cpe:2.3:o:microsoft:windows_2003_server:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: R2 Update SP2
cpe:2.3:o:microsoft:windows_2003_server:r2:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Vista » Update SP2
cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008 » Version: R2 Update SP1
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008 » Version: N/A Update SP2
cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows 7 » Version: N/A Update SP1
cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows 8 » Version: N/A
cpe:2.3:o:microsoft:windows_8:-:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2012 » Version: N/A
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2012 » Version: R2 Standard Edition
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:standard:*:*:*
Matching versions
Microsoft » Windows Server 2012 » Version: R2 Datacenter Edition
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:datacenter:*:*:*
Matching versions
Microsoft » Windows Server 2012 » Version: R2 Essentials Edition
cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:essentials:*:*:*
Matching versions
Microsoft » Windows Rt » Version: N/A
cpe:2.3:o:microsoft:windows_rt:-:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows 8.1 » Version: N/A
cpe:2.3:o:microsoft:windows_8.1:-:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Rt 8.1 » Version: N/A
cpe:2.3:o:microsoft:windows_rt_8.1:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2015-2367

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 12 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2015-2367

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
2.1	LOW	AV:L/AC:L/Au:N/C:P/I:N/A:N	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2015-2367

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2015-2367

http://www.zerodayinitiative.com/advisories/ZDI-15-536

ZDI-15-536 | Zero Day Initiative
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-073

Microsoft Security Bulletin MS15-073 - Important | Microsoft Docs

CVEs referencing this url
http://www.securitytracker.com/id/1032904

Windows Drivers Flaws Let Local Users Obtain Potentially Sensitive Information and Gain Elevated Privileges - SecurityTracker

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2015-2367

Products affected by CVE-2015-2367

Exploit prediction scoring system (EPSS) score for CVE-2015-2367

CVSS scores for CVE-2015-2367

CWE ids for CVE-2015-2367

References for CVE-2015-2367