Vulnerabilities > CVE-2015-2473 - Unspecified vulnerability in Microsoft Windows 7 and Windows Server 2008
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN microsoft
nessus
Summary
Untrusted search path vulnerability in the client in Remote Desktop Protocol (RDP) through 8.1 in Microsoft Windows 7 SP1 and Windows Server 2008 R2 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Protocol DLL Planting Remote Code Execution Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Msbulletin
| bulletin_id | MS15-082 |
| bulletin_url | |
| date | 2015-08-11T00:00:00 |
| impact | Remote Code Execution |
| knowledgebase_id | 3080348 |
| knowledgebase_url | |
| severity | Important |
| title | Vulnerabilities in RDP Could Allow Remote Code Execution |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS15-082.NASL |
| description | The remote Windows host is missing a security update. It is, therefore affected by the following vulnerabilities : - A spoofing vulnerability exists due to the Remote Desktop Session Host (RDSH) not properly validating certificates during authentication. An man-in-the-middle attacker can exploit this to impersonate a client session by spoofing a TLS/SSL server via a certificate that appears valid. (CVE-2015-2472) - A code execution vulnerability exists due to the Remote Desktop Protocol client not properly handling the loading of certain specially crafted DLL files. An attacker, by placing a malicious DLL in the user |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 85332 |
| published | 2015-08-11 |
| reporter | This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/85332 |
| title | MS15-082: Vulnerability in RDP Could Allow Remote Code Execution (3080348) |