CVE-2015-6133

Microsoft Windows 10 - Access Control

Title source: rule

Description

Microsoft Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT Gold and 8.1, and Windows 10 Gold and 1511 mishandle library loading, which allows local users to gain privileges via a crafted application, aka "Windows Library Loading Remote Code Execution Vulnerability."

Exploits (1)

exploitdb WORKING POC

rubylocalwindows

https://www.exploit-db.com/exploits/41706

View Code ZIP pw:eip

References (2)

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1034338

[Patch, Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-132

Scores

EPSS 0.5909

EPSS Percentile 98.2%

Details

CWE

CWE-264

Status published

Products (8)

microsoft/windows_10

microsoft/windows_10 1511

microsoft/windows_8

microsoft/windows_8.1

microsoft/windows_rt

microsoft/windows_rt_8.1

microsoft/windows_server_2012

microsoft/windows_server_2012 r2

Published Dec 09, 2015

Tracked Since Feb 18, 2026