Trend Micro Security

(MS15-045) Vulnerability in Windows Journal Could Allow Remote Code Execution (3046002)

  CVE Identifier: CVE-2015-1695,CVE-2015-1696,CVE-2015-1697,CVE-2015-1698,CVE-2015-1699,CVE-2015-1675

  概要

This update resolves several vulnerabilities found in several versions of the Microsoft Windows operating system. The vulnerability lies in the way Windows Journal parses a specially crafted Journal (.JST) file. An attacker who successfully exploits said vulnerabilities may execute code remotely on the vulnerable computer.

  影響を受けるソフトウェア

  • Windows Server 2012
  • Windows Server 2012 R2
  • Windows RT
  • Windows RT 8.1
  • Windows Vista x64 Edition Service Pack 2
  • Windows Vista Service Pack 2
  • Windows Server 2008 for 32-bit Systems Service Pack 2
  • Windows Server 2008 for x64-based Systems Service Pack 2
  • Windows 7 for 32-bit Systems Service Pack 1
  • Windows 7 for x64-based Systems Service Pack 1
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1
  • Windows 8 for 32-bit Systems
  • Windows 8 for x64-based Systems
  • Windows 8.1 for x64-based Systems
  • Windows 8.1 for 32-bit Systems