CVE-2015-6109

low

Description

The kernel in Microsoft Windows 8.1, Windows Server 2012 R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to bypass the KASLR protection mechanism, and consequently discover a driver base address, via a crafted application, aka "Windows Kernel Memory Information Disclosure Vulnerability."

References

http://www.securitytracker.com/id/1034114

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-115

Details

Source: MITRE

Published: 2015-11-11

Updated: 2019-05-15

Type: CWE-200

Risk Information

CVSS v2

Base Score: 2.1

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 3.9

Severity: LOW