(MS15-037) Vulnerability in Windows Task Scheduler Could Allow Elevation of Privilege (3046269)
Severity: : High
CVE Kennungen: : CVE-2015-0098
Advisory Date: 22 de kwietnia de 2015
DESCRIPTION
This security update addresses a vulnerability found in Microsoft Windows. Once a remote attacker exploited this vulnerability successfully, it can possibly cause Task Scheduler to run a specially crafted application in the context of the System account. As such, attackers can install programs or view and change or delete data thus compromising the security of the system.
SOLUTION
AFFECTED SOFTWARE AND VERSION:
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for Itanium-based Systems Service Pack 1