Windows create process elevation of privilege vulnerability - MS15-015ID: oval:org.secpod.oval:def:23480 | Date: (C)2015-02-11 (M)2021-09-11 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft bulletin, MS15-015. The update is required to fix an elevation of privilege vulnerability. The flaw is present in the windows create process, which fails to properly validate and enforce impersonation levels. An attacker who successfully exploited this vulnerability could bypass impersonation-level security checks and gain elevated privileges on a targeted system.
Platform: |
Microsoft Windows Server 2008 R2 |
Microsoft Windows 7 |
Microsoft Windows 8 |
Microsoft Windows Server 2012 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |