CVE-2015-0058

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Windows 8.1 Windows Server 2012 R2 Windows RT 8.1

Description The issue is related to a double-free condition in the Windows kernel-mode driver, specifically in the win32k.sys file. This condition allows an attacker to elevate privileges and run arbitrary code in kernel mode. An attacker could then install programs, view, change, or delete data, or create new accounts with full administrative rights. To exploit the issue, an attacker would first have to log on to the system and then run a specially crafted application designed to elevate privileges.

Recommendations For Windows 8.1, update to a version that includes the fix for the double-free vulnerability in win32k.sys. For Windows Server 2012 R2, update to a version that includes the fix for the double-free vulnerability in win32k.sys. For Windows RT 8.1, update to a version that includes the fix for the double-free vulnerability in win32k.sys. As a temporary workaround, consider restricting access to the win32k.sys driver to minimize the risk of exploitation.