6.9
CVSSv2

CVE-2015-2418

Published: 20/07/2015 Updated: 22/09/2017
CVSS v2 Base Score: 6.9 | Impact Score: 10 | Exploitability Score: 3.4
VMScore: 614
Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Race condition in Microsoft Malicious Software Removal Tool (MSRT) prior to 5.26 allows local users to gain privileges via a crafted DLL, aka "MSRT Race Condition Vulnerability."

Affected Products

Vendor Product Versions
MicrosoftMalicious Software Removal Tool5.25

Recent Articles

Security Support Ends For Remaining Windows XP Machines
Threatpost • Michael Mimoso • 15 Jul 2015

Yes, there are still some rather large organizations maintaining their investments in Windows XP, as we recently learned when an unclassified U.S. Navy document showed that it had extended a support contract with Microsoft for two more years meaning that its systems will continue to receive XP security patches until 2017.
For other XP installations that have not entered into similar commitments, the clock ran out yesterday on signatures. Keeping to its word, Microsoft ended security suppor...