MS15-025: Vulnerabilities in Windows kernel could allow elevation of privilege: March 10, 2015

Applies to: Windows Server 2012 R2 DatacenterWindows Server 2012 R2 StandardWindows Server 2012 R2 Essentials

Summary


This security update resolves two privately reported vulnerabilities in Windows. These vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application. An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts that have full user rights.

Introduction


Microsoft has released security bulletin MS15-025. To learn more about this security bulletin:

How to obtain help and support for this security update

Help installing updates:
Support for Microsoft Update

Security solutions for IT professionals:
TechNet Security Troubleshooting and Support

Help protect your Windows-based computer from viruses and malware:
Virus Solution and Security Center

Local support according to your country:
International Support

More Information


Known issues and additional information about this security update

The following articles contain additional information about this security update as it relates to individual product versions. The articles may contain known issue information. If this is the case, the known issue is listed under each article link.
  • 3035131 MS15-025: Description of the security update for Windows kernel: March 10, 2015
    Known issues in security update 3035131:
    • If you manually install the security update that is described in advisory 3033929 and then manually install security update 3035131, you receive a message that states that update 3035131 is already installed. In this scenario, security update 3035131 is not added to the list of installed updates. Update 3033929 includes the security updates that are provided by update 3035131. Therefore, the system is not in an unprotected state in this scenario, even though update 3035131 is not added to the list of installed updates. Customers who plan to manually install both updates are advised to install the 3035131 update before they install the 3033929 update. If customers manually install the updates in this order, the list of installed updates will include both updates.
  • 3033395 MS15-025: Description of the security update for Windows kernel: March 10, 2015
    Known issues in security update 3033395:

    • Customers who are running supported editions of Windows Server 2003 are repeatedly reoffered security update 3033395 when the update is installed on single-processor 32-bit and 64-bit computers. On March 13, 2015, Microsoft released update 3033395-v2 for these editions to address this problem. Customers who do not already have the 3033395 update installed should install 3033395-v2 to have protection from this vulnerability. We recommend that customers who already have security update 3033395 successfully installed apply 3033395-v2 even though their systems already have the protection that is provided by security update 3033395.

File information