CVE-2015-2433

Name of the Vulnerable Software and Affected Versions Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 Windows 10

Description A security feature bypass issue exists due to the Windows kernel's failure to properly initialize a memory address. This allows an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploits this issue could retrieve the base address of the kernel driver from a compromised process. To exploit this issue, an attacker would have to log on to an affected system and run a specially crafted application.

Recommendations For Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10, at the moment, there is no information about a newer version that contains a fix for this issue.