Elevation of Privilege vulnerability in the kernel-mode driver in Microsoft Windows - CVE-2015-0078ID: oval:org.secpod.oval:def:23744 | Date: (C)2015-03-11 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Windows 8, Windows 8.1, Server 2012 or Server 2012 R2 and is prone to an elevation of privilege vulnerability. A flaw is present in the Windows kernel-mode driver, which fails to properly validate the calling threads token. An authenticated attacker who successfully exploited this vulnerability could acquire administrator credentials and use them to elevate privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full administrative rights.
Platform: |
Microsoft Windows 8 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 |
Microsoft Windows Server 2012 R2 |