CVE-2015-6113

Name of the Vulnerable Software and Affected Versions Windows Vista SP2 Windows Server 2008 SP2 and R2 SP1 Windows 7 SP1 Windows 8 Windows 8.1 Windows Server 2012 Gold and R2 Windows RT Gold and 8.1 Windows 10 Gold and 1511

Description The issue allows local users to bypass intended filesystem permissions by leveraging Low Integrity access. This is due to errors in security settings. An attacker could potentially modify files outside a low integrity level application by running a specially crafted application on an affected system.

Recommendations For Windows Vista SP2, update the system to address the security feature bypass vulnerability. For Windows Server 2008 SP2 and R2 SP1, apply the necessary security patches to resolve the issue. For Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511, ensure that all security updates are installed to mitigate the risk of exploitation. As a temporary workaround, consider restricting access to low integrity level applications to minimize the risk of exploitation.