QwikSec

Security Database

CVE

CWE

Training

CVE-2015-0002

Published: Jan 13, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in Microsoft Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not verify that an impersonation token is associated with an administrative account, which allows local users to gain privileges by running AppCompatCache.exe with a crafted DLL file, aka MSRC ID 20544 or "Microsoft Application Compatibility Infrastructure Elevation of Privilege Vulnerability."

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ms-appcompatcache-cve20150002-priv-esc(99523)

vdb-entry

x_refsource_XF

https://code.google.com/p/google-security-research/issues/detail?id=118

x_refsource_MISC

vdb-entry

x_refsource_BID

win-ms15kb3023266-update(99524)

vdb-entry

x_refsource_XF

http://www.zdnet.com/article/google-discloses-unpatched-windows-vulnerability/

x_refsource_MISC

vendor-advisory

x_refsource_MS

http://twitter.com/sambowne/statuses/550384131683520512

x_refsource_MISC

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.