Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2015-1674 — Microsoft Windows Server 2012 vulnerability

CWE-2547 documents6 sources

Severity

4.6MEDIUMNVD

EPSS

0.9%

top 24.86%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows Server 2012

Timeline

PublishedMay 13

Latest updateMay 14

Description

The kernel in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly validate an unspecified address, which allows local users to bypass the KASLR protection mechanism, and consequently discover the cng.sys base address, via a crafted application, aka "Windows Kernel Security Feature Bypass Vulnerability."

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/windowsr2

Patches

Patch: docs.microsoft.com ↗Patch: docs.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-6qgw-fx7f-v75v: The kernel in Microsoft Windows 8, Windows 8↗2022-05-14

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - 'CNG.SYS' Kernel Security Feature Bypass (MS15-052)↗2015-05-18

▶

🔍Detection Rules

YARA

CVE_2015_1674_CNGSYS↗

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - May 2015↗2015-05-12

▶

Talos

Microsoft Patch Tuesday - May 2015↗2015-05-12

▶

Zscaler

Zscaler found Multiple Security Vulnerabilities | 05-12-2015↗

▶