Vulnerability Description
Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allows local users to bypass intended filesystem restrictions and delete arbitrary files via unspecified vectors, aka "Windows Task File Deletion Elevation of Privilege Vulnerability."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 10 | - |
| Microsoft | Windows 7 | - |
| Microsoft | Windows 8 | - |
| Microsoft | Windows 8.1 | - |
| Microsoft | Windows Rt | - |
| Microsoft | Windows Rt 8.1 | - |
| Microsoft | Windows Server 2008 | - |
| Microsoft | Windows Server 2012 | - |
| Microsoft | Windows Vista | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/76653Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033494Third Party AdvisoryVDB Entry
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-10PatchVendor Advisory
- https://www.exploit-db.com/exploits/38200/ExploitThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/76653Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1033494Third Party AdvisoryVDB Entry
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-10PatchVendor Advisory
- https://www.exploit-db.com/exploits/38200/ExploitThird Party AdvisoryVDB Entry
FAQ
What is CVE-2015-2525?
CVE-2015-2525 is a vulnerability with a CVSS score of 7.2 (HIGH). Task Scheduler in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 allow...
How severe is CVE-2015-2525?
CVE-2015-2525 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-2525?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 10, Microsoft Windows 7, Microsoft Windows 8, Microsoft Windows 8.1, Microsoft Windows Rt.