CVE-2015-1701

Microsoft Win32k Privilege Escalation Vulnerability

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

Yes

*KEV

Decision

Act

*SSVC

Descriptions

Win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Vista SP2, and Server 2008 SP2 allows local users to gain privileges via a crafted application, as exploited in the wild in April 2015, aka "Win32k Elevation of Privilege Vulnerability."

Win32k.sys en los controladores kernel-mode en Microsoft Windows Server 2003 SP2, Vista SP2 y Server 2008 SP2 permite a usuarios locales obtener privilegios a través de una aplicación manipulada, tal y como se explota activamente en Abril de 2015, también conocida como "Vulnerabilidad de Elevación de Privilegios Win32k".

An unspecified vulnerability exists in the Win32k.sys kernel-mode driver in Microsoft Windows Server that allows a local attacker to execute arbitrary code with elevated privileges.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:Act

Exploitation

Active

Automatable

Tech. Impact

Total

* Organization's Worst-case Scenario

Timeline

2015-02-17 CVE Reserved
2015-04-21 CVE Published
2015-06-22 First Exploit
2022-03-03 Exploited in Wild
2022-03-24 KEV Due Date
2025-02-10 CVE Updated
2025-03-30 EPSS Updated

CWE

CWE-264: Permissions, Privileges, and Access Controls

CAPEC

References (13)

URL	Tag	Source
http://seclists.org/fulldisclosure/2020/May/34	Mailing List
http://twitter.com/symantec/statuses/590208710527549440	X_refsource_misc
http://www.securityfocus.com/bid/74245	Vdb Entry
http://www.securitytracker.com/id/1032155	Vdb Entry
https://www.fireeye.com/blog/threat-research/2015/04/probable_apt28_useo.html	X_refsource_misc
https://technet.microsoft.com/library/security/MS15-051

URL	Date	SRC
https://packetstorm.news/files/id/132403	2015-06-22
https://www.exploit-db.com/exploits/37367	2025-02-10
https://www.exploit-db.com/exploits/37049	2025-02-10
https://github.com/hfiref0x/CVE-2015-1701	2017-12-18
https://github.com/Anonymous-Family/CVE-2015-1701	2022-03-21
https://github.com/Anonymous-Family/CVE-2015-1701-download	2022-03-21

URL	Date	SRC

URL	Date	SRC
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-051	2020-05-14

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Microsoft Search vendor "Microsoft"		Windows 2003 Server Search vendor "Microsoft" for product "Windows 2003 Server"				*		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Vista Search vendor "Microsoft" for product "Windows Vista"				*		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows 7 Search vendor "Microsoft" for product "Windows 7"				*		sp1, x64		Affected
Microsoft Search vendor "Microsoft"		Windows 7 Search vendor "Microsoft" for product "Windows 7"				*		sp1, x86		Affected