CVE-2015-2508

Name of the Vulnerable Software and Affected Versions Microsoft Windows (affected versions not specified)

Description The issue is related to insufficient access restrictions in the ATML component of the Windows operating system. It allows a local attacker to elevate privileges using a specially crafted application. The vulnerability exists due to the Windows Adobe Type Manager Library's failure to properly handle objects in memory, potentially enabling an attacker to execute arbitrary code and gain control of the affected system. This could allow the attacker to install programs, view, change, or delete data, or create new accounts with full user rights. To exploit this vulnerability, an attacker would first need to log on to the target system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.