SynopsisThe remote Windows host is affected by multiple vulnerabilities.
DescriptionThe version of Windows running on the remote host is affected by the following vulnerabilities :
- Information disclosure vulnerabilities exist in the kernel-mode driver that can reveal portions of kernel memory. An attacker can exploit these and gain information about the system, which can then be used to launch further attacks. (CVE-2015-0077, CVE-2015-0094, CVE-2015-0095)
- A privilege escalation vulnerability exists in the kernel-mode driver due to improper validation of thread tokens. An authenticated attacker, using a specially crafted application, can exploit this issue to gain administrative credentials in order to elevate privileges. (CVE-2015-0078)
SolutionMicrosoft has released a set of patches for Windows 2003, Vista, 2008, 7, 2008 R2, 8, 2012, 8.1, and 2012 R2.