QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2015-0078

Back to search

CVE-2015-0078

Published: Mar 11, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

win32k.sys in the kernel-mode drivers in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly validate the token of a calling thread, which allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability."

VendorProductVersions

n/a

n/a

affected
n/a

References

72902
vdb-entry
x_refsource_BID
1031897
vdb-entry
x_refsource_SECTRACK
MS15-023
vendor-advisory
x_refsource_MS

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now