MS15-063: Vulnerability in Windows Kernel Could Allow Elevation of Privilege (3063858)
High Nessus Plugin ID 84057
SynopsisThe remote Windows host is affected by a privilege escalation vulnerability.
DescriptionThe remote Windows host is affected by a privilege escalation vulnerability due to improper validation of user-supplied input to the Microsoft Windows LoadLibrary. A remote attacker can exploit this vulnerability by convincing a user to place a specially crafted dynamic linked library (dll) file in a local directory or network share, and then by convincing a user to run an application that uses the malicious library, resulting in an elevation of privilege to full administrative rights.
SolutionMicrosoft has released a set of patches for Windows Vista, 2008, 7, 2008 R2, 8, and 2012.