Win32k.sys Kernel Information Disclosure
XLAB ID: XLAB-15-004
CVE ID: CVE-2015-0095
Patch Status: Fixed
Vulnerability Details:
The specific flaw exists within the function NtUserSetParent. The issue lies in the failure to properly validate parameters passed in leadingto kernel information disclosure. An attacker can leverage this vulnerability to bypass KASLR.
Disclosure Timeline:
| 2014/11/17 | Provide vulnerability detail to Micorsoft via secure@micorsoft.com |
|---|---|
| 2014/11/19 | Micorsoft responded that they had opened case 21058 for the issuse |
| 2014/12/11 | Micorsoft responded that they had successfully reproduced the issue, and had been working on a fix. |
| 2015/01/17 | Micorsoft responded that they had been working on a fix |
| 2015/02/07 | Microsoft responded that they had assigned CVE-2015-0095 to the issue |
| 2015/03/11 | The issue was fiexed with MS15-023 |
Credit:
This vulnerability was discovered by: Kai Kang