Vulnerability in Windows error reporting could allow security feature bypass - MS15-006ID: oval:org.secpod.oval:def:23100 | Date: (C)2015-01-14 (M)2021-09-11 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS15-006. The update is required to fix a security feature bypass vulnerability. A flaw is present in Windows Error Reporting (WER), which fails to properly interact with processes. An attacker who successfully exploited this vulnerability could access the memory of a running process protected by "Protected Process Light."
Platform: |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |