Vulnerability Protection

VULNERABILITIES IN WINDOWS KERNEL-MODE DRIVER COULD ALLOW ELEVATION OF PRIVILEGE

Summary

Multiple vulnerabilities in the Windows kernel-mode driver may, if successfully exploited, lead to an attacker gaining an elevation of privileges.

Detailed Description


Two separate vulnerabilities in the Win32k.sys Windows kernel-mode driver may be exploited to either disclose information from the kernel memory (which may be used to further compromise the system) or to gain an elevation of privileges.

To attack these vulnerabilities, the attacker must be locally logged onto the system with valid logon credentials.

CVE Reference


  • CVE-2014-0300
  • CVE-2014-0323

Solution


Install the latest security patch for applicable systems, available for download from (https://technet.microsoft.com/en-us/security/bulletin/ms14-015)

Source


Microsoft Security Bulletin MS14-015

SCAN & CLEAN?: YES FREE?: ABSOLUTELY

Scan and clean your PC with F-Secure's Online Scanner. The best thing is, its free!

Learn More Try Out Now!