(MS15-037) Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (3046269)
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2015-0098
Date du conseil: 22 avril 2015
Description
This security update addresses a vulnerability found in Microsoft Windows. Once a remote attacker exploited this vulnerability successfully, it can possibly cause Task Scheduler to run a specially crafted application in the context of the System account. As such, attackers can install programs or view and change or delete data thus compromising the security of the system.
Solutions
Affected software and version:
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems Service Pack 1