CVE-2015-1758 — Microsoft Windows Server 2008 vulnerability

4 documents3 sources

Severity

6.9MEDIUMNVD

EPSS

5.4%

top 9.86%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows Server 2008

Timeline

PublishedJun 10

Latest updateMay 14

Description

Untrusted search path vulnerability in the LoadLibrary function in the kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows RT allows local users to gain privileges via a Trojan horse DLL in an unspecified directory, aka "Windows LoadLibrary EoP Vulnerability."

CVSS vector

AV:L/AC:M/C:C/I:C/A:CExploitability: 3.4 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/windowsr2

🔴Vulnerability Details

GHSA

GHSA-93hw-rhm8-6h53: Untrusted search path vulnerability in the LoadLibrary function in the kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Wind↗2022-05-14

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - June 2015↗2015-06-09

▶

Talos

Microsoft Patch Tuesday - June 2015↗2015-06-09

▶