CVE-2015-0010
Description
The CryptProtectMemory function in cng.sys (aka the Cryptography Next Generation driver) in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1, when the CRYPTPROTECTMEMORY_SAME_LOGON option is used, does not check an impersonation tokens level, which allows local users to bypass intended decryption restrictions by leveraging a service that (1) has a named-pipe planting vulnerability or (2) uses world-readable shared memory for encrypted data, aka CNG Security Feature Bypass Vulnerability or MSRC ID 20707.
Risk Information
Base Score
5.5
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
1.726
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2003 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Vista (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2008 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 7 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 8 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 8.1 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2003 x64 Edition (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Vista for x64-based Systems (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2008 x64 Edition (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 7 for x64-based Systems (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2008 R2 x64 Edition (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 8 for x64-based Systems (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2012 (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows 8.1 for x64-based Systems (KB3013455) | Windows |
| ms15-010: vulnerability in windows kernel could allow elevation of privilege: february 10, 2015 for Windows Server 2012 R2 (KB3013455) | Windows |
| Security Update for Windows Server 2003 (KB3023562) | Windows |
| Security Update for Windows Vista (KB3023562) | Windows |
| Security Update for Windows Server 2008 (KB3023562) | Windows |
| Security Update for Windows 7 (KB3023562) | Windows |
| Security Update for Windows 8 (KB3023562) | Windows |
| Security Update for Windows 8.1 (KB3023562) | Windows |
| Security Update for Windows Server 2003 x64 Edition (KB3023562) | Windows |
| Security Update for Windows Vista for x64-based Systems (KB3023562) | Windows |
| Security Update for Windows Server 2008 x64 Edition (KB3023562) | Windows |
| Security Update for Windows 7 for x64-based Systems (KB3023562) | Windows |
| Security Update for Windows Server 2008 R2 x64 Edition (KB3023562) | Windows |
| Security Update for Windows 8 for x64-based Systems (KB3023562) | Windows |
| Security Update for Windows Server 2012 (KB3023562) | Windows |
| Security Update for Windows 8.1 for x64-based Systems (KB3023562) | Windows |
| Security Update for Windows Server 2012 R2 (KB3023562) | Windows |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-16947 | Security Update for Windows Server 2003 (KB3013455) |
| PATCH-16948 | Security Update for Windows Vista (KB3013455) |
| PATCH-16949 | Security Update for Windows Server 2008 (KB3013455) |
| PATCH-16950 | Security Update for Windows 7 (KB3013455) |
| PATCH-16951 | Security Update for Windows 8 (KB3013455) |
| PATCH-16952 | Security Update for Windows 8.1 (KB3013455) |
| PATCH-16953 | Security Update for Windows Server 2003 x64 Edition (KB3013455) |
| PATCH-16954 | Security Update for Windows Vista for x64-based Systems (KB3013455) |
| PATCH-16955 | Security Update for Windows Server 2008 x64 Edition (KB3013455) |
| PATCH-16956 | Security Update for Windows 7 for x64-based Systems (KB3013455) |
| PATCH-16957 | Security Update for Windows Server 2008 R2 x64 Edition (KB3013455) |
| PATCH-16958 | Security Update for Windows 8 for x64-based Systems (KB3013455) |
| PATCH-16959 | Security Update for Windows Server 2012 (KB3013455) |
| PATCH-16960 | Security Update for Windows 8.1 for x64-based Systems (KB3013455) |
| PATCH-16961 | Security Update for Windows Server 2012 R2 (KB3013455) |
| PATCH-16962 | Security Update for Windows Server 2003 (KB3023562) |
| PATCH-16963 | Security Update for Windows Vista (KB3023562) |
| PATCH-16964 | Security Update for Windows Server 2008 (KB3023562) |
| PATCH-16965 | Security Update for Windows 7 (KB3023562) |
| PATCH-16966 | Security Update for Windows 8 (KB3023562) |
| PATCH-16967 | Security Update for Windows 8.1 (KB3023562) |
| PATCH-16968 | Security Update for Windows Server 2003 x64 Edition (KB3023562) |
| PATCH-16969 | Security Update for Windows Vista for x64-based Systems (KB3023562) |
| PATCH-16970 | Security Update for Windows Server 2008 x64 Edition (KB3023562) |
| PATCH-16971 | Security Update for Windows 7 for x64-based Systems (KB3023562) |
| PATCH-16972 | Security Update for Windows Server 2008 R2 x64 Edition (KB3023562) |
| PATCH-16973 | Security Update for Windows 8 for x64-based Systems (KB3023562) |
| PATCH-16974 | Security Update for Windows Server 2012 (KB3023562) |
| PATCH-16975 | Security Update for Windows 8.1 for x64-based Systems (KB3023562) |
| PATCH-16976 | Security Update for Windows Server 2012 R2 (KB3023562) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234