Detections
Analytics

MS15-028: Vulnerability in Windows Task Scheduler Could Allow Security Feature Bypass (3030377)

low Nessus Plugin ID 81742

Language:

Synopsis

The remote Windows host is affected by a security bypass vulnerability.

Description

The remote Windows host is affected by a security bypass vulnerability due to Windows Task Scheduler not properly validating and enforcing impersonation levels. Attackers can exploit this flaw to elevate privileges in order to execute files they have no permission to run.

Solution

Microsoft has released a set of patches for Windows 7, 2008 R2, 8, 2012, 8.1, and 2012 R2.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2015/ms15-028

Plugin Details

Severity: Low

ID: 81742

File Name: smb_nt_ms15-028.nasl

Version: 1.9

Type: local

Agent: windows

Published: 3/10/2015

Updated: 11/22/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Low

Base Score: 2.1

Temporal Score: 1.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

CVSS Score Source: CVE-2015-0084

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 3/10/2015

Vulnerability Publication Date: 3/10/2015

Reference Information

CVE: CVE-2015-0084

BID: 72913

IAVB: 2015-B-0037

MSFT: MS15-028

MSKB: 3030377