CVE-2015-0098

Name of the Vulnerable Software and Affected Versions Microsoft Windows 7 SP1 Microsoft Windows Server 2008 R2 SP1

Description The issue allows local users to gain privileges by triggering application execution by an invalid task. An attacker who successfully exploits this could cause the Task Scheduler to run a specially crafted application in the context of the System account. This could enable the attacker to install programs, view, change, or delete data, or create new accounts with full user rights. To exploit the issue, an attacker would first have to log on to the target system and determine whether or not the known invalid task was present on the system.

Recommendations For Microsoft Windows 7 SP1, update the system to remove the known invalid task that allows for privilege escalation. For Microsoft Windows Server 2008 R2 SP1, ensure that all users log on to the system with limited privileges to minimize the risk of exploitation, and apply any available patches to fix the Task Scheduler elevation of privilege issue.