Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-0016

KEV EPSS 92.09% · P100
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-0016

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in the TS WebProxy (aka TSWbPrxy) component in Microsoft Windows Vista SP2, Windows 7 SP1, Windows Server 2008 R2 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows remote attackers to gain privileges via a crafted pathname in an executable file, as demonstrated by a transition from Low Integrity to Medium Integrity, aka "Directory Traversal Elevation of Privilege Vulnerability."
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft TS WebProxy Windows组件目录遍历的特权提升漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。TS WebProxy(又名TSWbPrxy)是其中的一个远程桌面服务网络代理组件。 Microsoft TS WebProxy Windows组件中存在一个特权提升漏洞。当Windows无法正确整理文件路径时,会导致该漏洞。成功利用该漏洞的攻击者可以获得与当前用户相同的用户权限。以下产品和版本受到影响:Microsoft Windows Vista SP2, Windows 7 SP1,Windows Serve
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2015-0016

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2015-0016

登录查看更多情报信息。

Same Patch Batch · n/a · 2015-01-13 · 94 CVEs total

CVE-2014-100031Ganesha Digital Library SQL注入漏洞
CVE-2014-100028WEBCrafted 跨站脚本漏洞
CVE-2014-100026Wordpress April's Super Function Pack插件跨站脚本漏洞
CVE-2014-100022WordPress mTouch Quiz SQL注入漏洞
CVE-2014-100021OrangeHRM 跨站脚本漏洞
CVE-2014-100020Ambit iTechClassifieds SQL注入漏洞
CVE-2014-100019Pomm LTree Converter SQL注入漏洞
CVE-2014-100018WordPress Unconfirmed插件跨站脚本漏洞
CVE-2014-100023WordPress mTouch Quiz插件跨站脚本漏洞
CVE-2014-100030Ganesha Digital Library 跨站脚本漏洞
CVE-2014-100029Ganesha Digital Library 目录遍历漏洞
CVE-2014-100032Airties Air 6372调制解调器跨站脚本漏洞
CVE-2014-100033LicensePal ArcticDesk 目录遍历漏洞
CVE-2014-100034LicensePal ArcticDesk 跨站脚本漏洞
CVE-2014-100035LicensePal ArcticDesk SQL注入漏洞
CVE-2014-100036FlatPress 跨站脚本漏洞
CVE-2014-100037Storytlr 跨站脚本漏洞
CVE-2014-100038Storytlr 跨站脚本漏洞
CVE-2014-100039Malwarebytes Anti-Exploit 拒绝服务漏洞
CVE-2014-10031Qualcomm Eudora WorldMail IMAPd服务缓冲区溢出漏洞

Showing top 20 of 94 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2015-0016

No comments yet

Leave a comment