Vulnerability Details : CVE-2015-7358
The IsDriveLetterAvailable method in Driver/Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, does not properly validate drive letter symbolic links, which allows local users to mount an encrypted volume over an existing drive letter and gain privileges via an entry in the /GLOBAL?? directory.
Products affected by CVE-2015-7358
- cpe:2.3:a:idrix:veracrypt:*:*:*:*:*:*:*:*
- cpe:2.3:a:ciphershed:ciphershed:*:*:*:*:*:*:*:*
- cpe:2.3:a:truecrypt:truecrypt:7.0:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-7358
0.06%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 24 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-7358
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST | |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2015-7358
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-7358
-
http://www.openwall.com/lists/oss-security/2015/09/24/3
oss-security - Re: CVE Request - TrueCrypt 7.1a and VeraCrypt 1.14 Local Elevation of PrivilegeIssue Tracking;Mailing List;Third Party Advisory
-
http://www.openwall.com/lists/oss-security/2015/09/22/7
oss-security - CVE Request - TrueCrypt 7.1a and VeraCrypt 1.14 Local Elevation of PrivilegeMailing List;Third Party Advisory
-
http://packetstormsecurity.com/files/133878/Truecrypt-7-Derived-Code-Windows-Drive-Letter-Symbolic-Link-Creation-Privilege-Escalation.html
Truecrypt 7 Derived Code/Windows: Drive Letter Symbolic Link Creation Privilege Escalation ≈ Packet StormThird Party Advisory;VDB Entry
-
https://www.exploit-db.com/exploits/38403/
TrueCrypt 7 / VeraCrypt 1.13 - Drive Letter Symbolic Link Creation Privilege EscalationThird Party Advisory;VDB Entry
-
https://veracrypt.codeplex.com/wikipage?title=Release%20Notes
VeraCrypt - CodePlex ArchiveRelease Notes;Vendor Advisory
-
https://code.google.com/p/google-security-research/issues/detail?id=538
538 - Truecrypt 7 Derived Code/Windows: Drive Letter Symbolic Link Creation EoP - project-zero - MonorailThird Party Advisory
Jump to