NVD

Id
22628  
Name
CVE-2015-0094  
Description
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly restrict the availability of address information during a function call, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
2.1  
Severity
Low  
CVSS Base Score
2.1  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)  
Pub Date
2017-01-19  
Published
2015-03-11  
Modified Date
2015-10-01  
Seq
2015-0094  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
119756 22628 CVE-2015-0094 MS15-023  View
119757 22628 CVE-2015-0094 1031897  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
6439 JVNDB-2015-001759 複数の Microsoft Windows 製品のカーネルモードドライバにおける ASLR 保護メカニズムを回避される脆弱性 複数の Microsoft Windows 製品のカーネルモードドライバは、関数呼び出し時にアドレス情報の可用性を適切に制限しないため、ASLR 保護メカニズムを回避される脆弱性が存在します。 CVE-2015-0094 77305 CVE-2015-0094 22628 2.1 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-001759.html 2015-03-10 2015-03-12 View