CVE-2015-7359

Name of the Vulnerable Software and Affected Versions TrueCrypt version 7.0 VeraCrypt versions prior to 1.15 CipherShed (affected versions not specified)

Description The issue arises from the lack of impersonation level checks in the IsVolumeAccessibleByCurrentUser and MountDevice methods within Ntdriver.c. This allows local users to impersonate a user at the SecurityIdentify level, thereby gaining unauthorized access to other users' mounted encrypted volumes when running on Windows.

Recommendations For TrueCrypt version 7.0: At the moment, there is no information about a newer version that contains a fix for this vulnerability. For VeraCrypt versions prior to 1.15: Update to version 1.15 or later. For CipherShed: At the moment, there is no information about a newer version that contains a fix for this vulnerability.