← Back

CVE-2015-0001

nvd nist
Published: Jan 13, 2015Modified: May 6, 2026

JSON object

Loading...
1.9
Vector
AV:L/AC:M/Au:N/C:P/I:N/A:N
Exploitability: 3.4 / Impact: 2.9
Source: NVD

Description

The Windows Error Reporting (WER) component in Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to bypass the Protected Process Light protection mechanism and read the contents of arbitrary process-memory locations by leveraging administrative privileges, aka "Windows Error Reporting Security Feature Bypass Vulnerability."

Affected (6)

Microsoft
5 products
Windows 8
Windows 8.1
Windows Rt
Windows Rt 8.1
Windows Server 2012
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Windows 8
All versions
Windows 8.1
All versions
Windows Rt
All versions
Windows Rt 8.1
All versions
Microsoft
Windows Server 2012
All versions
Windows Server 2012
Version r2

Related CWEs

CWE-264
CWE-264

References (12)

Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: secure@microsoft.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.