CVE-2015-2554

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 8 through 10 Microsoft Windows Server versions 2012 through 2012 R2 Microsoft Windows RT versions 8 through 8.1

Description The issue is related to insufficient access restrictions to certain functions in the Windows kernel, allowing local users to gain elevated privileges via a crafted application. An attacker who successfully exploits this issue could run arbitrary code in kernel mode, enabling them to install programs, view, change, or delete data, or create new accounts with full user rights. To exploit the issue, an attacker would first have to log on to the system.

Recommendations For Microsoft Windows versions 8 through 10, update to a version that includes the fix for this issue. For Microsoft Windows Server versions 2012 through 2012 R2, apply the security patch provided by Microsoft to resolve the issue. For Microsoft Windows RT versions 8 through 8.1, consider restricting access to sensitive functions until a patch is available. As a temporary workaround, consider disabling any unnecessary features or applications that could be used to exploit the vulnerability until a patch is available.