CVE-2015-1768

Name of the Vulnerable Software and Affected Versions Windows Server 2003 SP2 and R2 SP2

Description The issue is caused by a buffer overflow in the dynamic memory of the win32k.sys component in the Windows operating system. This allows a local attacker to gain privileges or cause a denial of service (memory corruption) via a crafted application. An attacker who successfully exploits this issue could execute arbitrary code within the context of another user, potentially allowing them to install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Windows Server 2003 SP2 and R2 SP2, at the moment, there is no information about a newer version that contains a fix for this vulnerability.