Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2015-2370

Published: 14/07/2015 Updated: 08/05/2019
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Windows Vista

Vulnerability Summary

The authentication implementation in the RPC subsystem in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not prevent DCE/RPC connection reflection, which allows local users to gain privileges via a crafted application, aka "Windows RPC Elevation of Privilege Vulnerability."

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft windows vista

microsoft windows server 2008 -

microsoft windows server 2012 r2

microsoft windows 8 -

microsoft windows 8.1 -

microsoft windows server 2008 r2

microsoft windows 7 -

microsoft windows rt 8.1 -

microsoft windows rt -

microsoft windows 2003 server

microsoft windows 2003 server r2

microsoft windows server 2012 -

Exploits

Exploit DB: Microsoft Windows 8.1 - DCOM DCE/RPC Local NTLM Reflection Privilege Escalation (MS15-076)
Source: githubcom/monoxgas/Trebuchet Trebuchet MS15-076 (CVE-2015-2370) Privilege Escalation Copies a file to any privileged location on disk Compiled with VS2015, precompiled exe in Binary directory Usage: trebuchetexe C:\Users\Bob\Eviltxt C:\Windows\System32\Evildll This is a lightly modified Proof of Concept by James Forshaw wit ...

Github Repositories

https://github.com/monoxgas/Trebuchet

MS15-076 Privilege Escalation

Trebuchet #####MS15-076 (CVE-2015-2370) Privilege Escalation ######Copies a file to any privileged location on disk Compiled with VS2015, precompiled exe in Binary directory Usage: trebuchetexe C:\Users\Bob\Eviltxt C:\Windows\System32\Evildll This is a lightly modified Proof of Concept by James Forshaw with Google, found here: codegooglecom/p/google-security-resear

Recent Articles

Miscreants tripled output of proof of concept exploits in 2015
The Register • John Leyden • 05 May 2016

Pastebin is for old hats. Cool black hats use Twitter now

Hackers collectively tripled the production of Proof-of-Concept exploits last year, according to a new study out on Thursday. Researchers and black hats develop proof-of-concept (PoC) exploits for research or demonstration purposes. These PoCs are developed for a various reasons – to demonstrate that software is vulnerable, force a company to develop a critical patch, showcase skills, or, in the most malicious cases, claim ownership of a working exploit that can run on real-world targets. More...

Read more...

References

CWE-264https://www.exploit-db.com/exploits/37768/http://www.securitytracker.com/id/1032907https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-076https://nvd.nist.govhttps://github.com/monoxgas/Trebuchethttps://www.exploit-db.com/exploits/37768/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcodedarbitrary codeCVE-2024-2404CVE-2024-21111CVE-2024-28627CVE-2024-4073information disclosureCVE-2024-32780CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook