CVE-2015-0010

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 11-02-2015 04:00

Last modified: - 12-01-2023 08:34

Total changes: - 4

Description

The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1, when the CRYPTPROTECTMEMORY_SAME_LOGON option is used, does not check an impersonation token's level, which allows local users to bypass intended decryption restrictions by leveraging a service that (1) has a named-pipe planting vulnerability or (2) uses world-readable shared memory for encrypted data, aka "CNG Security Feature Bypass Vulnerability" or MSRC ID 20707.

Common Vulnerability Scoring System (CVSS)

AV:L/AC:M/Au:N/C:P/I:N/A:N

Low

Attack complexity

Local

Attack vector

None

Availability

Low

Confidentiality

None

Integrity

Privileges required

Scope

User interaction

1.9

Base score

3.4

2.9

Exploitability score

Impact score

Verification logic

Reference

http://code.google.com/p/google-security-research/issues/detail?id=128
72461-Third Party Advisory, VDB Entry
MS15-010-Patch, Vendor Advisory

Keywords

CVE-2015-0010

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2015-0010

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures