Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:STC:DL:CVE-2015-0094-ID |
|---|---|
Severity |
Minor |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Microsfot Windows CVE-2015-0094 Information Disclosure |
Release Date |
2015/03/10 |
Update Number |
2473 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Microsfot Windows CVE-2015-0094 Information Disclosure
This signature detects attempts to exploit a known vulnerability against Microsoft Windows Operating system. A successful exploit can lead to kernel memory information disclosure.
Extended Description
The kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 do not properly restrict the availability of address information during a function call, which makes it easier for local users to bypass the ASLR protection mechanism via a crafted application, aka "Microsoft Windows Kernel Memory Disclosure Vulnerability."
Affected Products
- Microsoft windows_7 -
- Microsoft windows_8 -
- Microsoft windows_8.1 -
- Microsoft windows_rt -
- Microsoft windows_rt_8.1 -
- Microsoft windows_server_2003 -
- Microsoft windows_server_2008 -
- Microsoft windows_server_2008 r2
- Microsoft windows_server_2012 -
- Microsoft windows_server_2012 r2
- Microsoft windows_vista -
References
- CVE: CVE-2015-0094