Title

Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-073) (Cat II impact)

Discussion

Microsoft has released a security bulletin addressing multiple vulnerabilities in Windows Kernel-Mode Drivers. The Windows kernel is the core of the operating system. It provides system-level services such as device management and memory management, allocates processor time to processes and manages error handling. To exploit these vulnerabilities, an attacker would use various tactics, techniques, and procedures (TTP). If successfully exploited, these vulnerabilities would allow an attacker to elevate privileges, install/modify/delete programs, and execute arbitrary code in kernel mode compromising the target system.

Check Content

Fix Text

Additional Identifiers

Rule ID:

Vulnerability ID: V-61097

Group Title:

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.