CVE-2015-2529

Name of the Vulnerable Software and Affected Versions Windows 8.1 Windows Server 2012 R2 Windows RT 8.1 Windows 10

Description The issue allows local users to bypass the Address Space Layout Randomization (ASLR) protection mechanism via a crafted application. This is due to the kernel's failure to properly initialize a memory address, enabling an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (KASLR) bypass. An attacker who successfully exploits this issue could retrieve the base address of the kernel driver from a compromised process, by logging on to an affected system and using a specially formed application.

Recommendations For Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10, at the moment, there is no information about a newer version that contains a fix for this issue.