Microsoft Windows Remote Code Execution Vulnerabilities

Last Update Date: 11 Nov 2015 16:47 Release Date: 11 Nov 2015 3270 Views

RISK: Medium Risk

TYPE: Operating Systems - Windows OS

Multiple Windows Kernel Memory Elevation of Privilege Vulnerabilities
Multiple elevation of privilege vulnerabilities exist in the way that Windows handles objects in memory. An attacker who successfully exploited the vulnerabilities could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Multiple Windows Kernel Memory Information Disclosure Vulnerabilities
Multiple information disclosure vulnerabilities exist when Windows fails to properly initialize memory addresses, allowing an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploited the vulnerabilities could retrieve the base address of the Kernel driver from a compromised process.
Multiple Windows Graphics Memory Remote Code Execution Vulnerabilities
Multiple remote code execution vulnerabilities exist when the Adobe Type Manager Library in Windows improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerabilities could install programs; view, change, or delete data; or create new accounts with full user rights.
Windows Kernel Security Feature Bypass Vulnerability
A security feature bypass vulnerability exists when the Windows kernel fails to properly validate permissions, allowing an attacker to inappropriately interact with the filesystem from low integrity level user-mode applications. An attacker who successfully exploited this vulnerability could potentially modify files outside a low integrity level application.