CVE-2015-2369

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2003 SP2 Microsoft Windows Vista SP2 Microsoft Windows Server 2008 SP2 and R2 SP1 Microsoft Windows 7 SP1

Description A local user can gain privileges via a Trojan horse DLL in the current working directory. This issue arises from the improper handling of certain specially crafted DLL files by Microsoft Windows Media Device Manager. An attacker could exploit this to take complete control of an affected system, allowing them to install programs, view, change, or delete data, or create new accounts with full user rights. The exploitation involves placing a specially crafted DLL file in the target user's current working directory and convincing the user to open a specially crafted .RTF file.

Recommendations For Microsoft Windows Server 2003 SP2, update to a version that includes the fix for this issue. For Microsoft Windows Vista SP2, update to a version that includes the fix for this issue. For Microsoft Windows Server 2008 SP2 and R2 SP1, update to a version that includes the fix for this issue. For Microsoft Windows 7 SP1, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Windows Media Device Manager to minimize the risk of exploitation.