This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/o:microsoft:windows_rt:-:gold
Detail
VendorMicrosoftFirst view 2014-10-15
ProductWindows RtLast view2015-01-13
Version-TypeOs
Edition 
Language 
Updategold 
 
CPE Productcpe:/o:microsoft:windows_rt

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
9.32015-01-13CVE-2015-0016NetworkMediumNone Requ...
4.72015-01-13CVE-2015-0011LocalMediumNone Requ...
7.22015-01-13CVE-2015-0004LocalLowNone Requ...
7.22015-01-13CVE-2015-0002LocalLowNone Requ...
1.92015-01-13CVE-2015-0001LocalMediumNone Requ...
Hide | Show 5 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52014-12-10CVE-2014-6355NetworkLowNone Requ...
9.32014-10-22CVE-2014-6352NetworkMediumNone Requ...
9.32014-10-15CVE-2014-4148NetworkMediumNone Requ...
9.32014-10-15CVE-2014-4114NetworkMediumNone Requ...
7.22014-10-15CVE-2014-4113LocalLowNone Requ...

CWE : Common Weakness Enumeration

%idName
50% (5)CWE-264Permissions, Privileges, and Access Controls
20% (2)CWE-94Failure to Control Generation of Code ('Code Injection')
10% (1)CWE-200Information Exposure
10% (1)CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path ...
10% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:28664Graphics component information disclosure vulnerability - CVE-2015-0002 (MS15...
oval:org.mitre.oval:def:28634Windows Error Reporting security feature bypass vulnerability - CVE-2015-0001...
oval:org.mitre.oval:def:27743WebDAV elevation of privilege vulnerability - CVE-2015-0011 (MS15-008)
oval:org.mitre.oval:def:28330Microsoft user profile service elevation of privilege vulnerability - CVE-201...
oval:org.mitre.oval:def:28084Graphics component information disclosure vulnerability - CVE-2014-6355 (MS14...
Hide | Show 5 More...
idName
oval:org.mitre.oval:def:26160Windows OLE remote code execution vulnerability - CVE-2014-4114 (MS14-060)
oval:org.mitre.oval:def:27076Win32k.sys elevation of privilege vulnerability - CVE-2014-4113 (MS14-058)
oval:org.mitre.oval:def:26422TrueType font parsing remote code execution vulnerability - CVE-2014-4148 (MS...
oval:org.mitre.oval:def:27923Windows OLE remote code execution vulnerability - CVE-2014-6352 (MS14-064)
oval:org.mitre.oval:def:28717Directory Traversal elevation of privilege vulnerability - CVE-2015-0016 (MS1...

SAINT Exploits

DescriptionLink
Windows OLE Package Manager CPackage::DoVerb() INF File Download VulnerabilityMore info here

ExploitDB Exploits

idDescription
35236MS14-064 Microsoft Windows OLE Package Manager Code Execution
35235MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python
35216MS Office 2007 and 2010 - OLE Arbitrary Command Execution
35101Windows TrackPopupMenu Win32k NULL Pointer Dereference
35055Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060)
Hide | Show 2 More...
idDescription
35020MS14-060 Microsoft Windows OLE Package Manager Code Execution
35019Windows OLE Package Manager SandWorm Exploit

Information Assurance Vulnerability Management (IAVM)

idDescription
2015-B-0005Microsoft Windows Error Reporting (WER) Security Bypass Vulnerability (MS15-006)
Severity : Category II - VMSKEY : V0058197
2015-A-0010Microsoft Windows Remote Privilege Escalation Vulnerability (MS15-004)
Severity : Category II - VMSKEY : V0058203
2015-A-0006Microsoft Windows Kernel-Mode Driver Privilege Escalation Vulnerability (MS15...
Severity : Category II - VMSKEY : V0058205
2015-A-0008Microsoft Windows User Profile Service Privilege Escalation Vulnerability (MS...
Severity : Category II - VMSKEY : V0058209
2014-A-0171Multiple Vulnerabilities in Windows OLE
Severity : Category I - VMSKEY : V0057379

Snort® IPS/IDS

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
DateDescription
2018-09-11CTSWebProxy ActiveX privilege escalation attempt
RuleID : 47462 - Type : BROWSER-PLUGINS - Revision : 2
2018-09-11CTSWebProxy ActiveX privilege escalation attempt
RuleID : 47461 - Type : BROWSER-PLUGINS - Revision : 2
2017-01-04Microsoft Office ole object external file loading attempt
RuleID : 40885 - Type : FILE-OTHER - Revision : 1
2017-01-04Microsoft Office ole object external file loading attempt
RuleID : 40884 - Type : FILE-OTHER - Revision : 1
2016-06-07Microsoft Office ole object external file loading attempt
RuleID : 38742 - Type : FILE-OTHER - Revision : 1
Hide | Show 20 More...
DateDescription
2016-03-24Microsoft Office ole object external file loading attempt
RuleID : 37825 - Type : FILE-OTHER - Revision : 1
2016-03-24Microsoft Office ole object external file loading attempt
RuleID : 37824 - Type : FILE-OTHER - Revision : 1
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37727 - Type : FILE-OTHER - Revision : 1
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37726 - Type : FILE-OTHER - Revision : 1
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37707 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37706 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37705 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37704 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37703 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37702 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37701 - Type : FILE-OFFICE - Revision : 2
2016-03-22Microsoft Office ole object external file loading attempt
RuleID : 37700 - Type : FILE-OFFICE - Revision : 2
2016-03-14Microsoft Windows OLE Packer Remote Code Execution attempt
RuleID : 36148 - Type : FILE-OFFICE - Revision : 2
2016-03-14Microsoft Windows OLE Packer Remote Code Execution attempt
RuleID : 36147 - Type : FILE-OFFICE - Revision : 2
2015-02-13CTSWebProxy ActiveX privilege escalation attempt
RuleID : 33052 - Type : BROWSER-PLUGINS - Revision : 2
2015-02-13CTSWebProxy ActiveX privilege escalation attempt
RuleID : 33051 - Type : BROWSER-PLUGINS - Revision : 2
2015-02-13Microsoft Windows WebdavRedirector privilege escalation attempt
RuleID : 33049 - Type : OS-WINDOWS - Revision : 3
2015-02-13Microsoft Windows WebdavRedirector privilege escalation attempt
RuleID : 33048 - Type : OS-WINDOWS - Revision : 3
2015-02-11Microsoft Windows identity token authorization bypass attempt
RuleID : 32966 - Type : OS-WINDOWS - Revision : 5
2015-02-11Microsoft Windows identity token authorization bypass attempt
RuleID : 32965 - Type : OS-WINDOWS - Revision : 5

Nessus® Vulnerability Scanner

idDescription
2015-01-13Name : The remote Windows host is affected by a privilege escalation vulnerability.
File : smb_nt_ms15-003.nasl - Type : ACT_GATHER_INFO
2015-01-13Name : The remote Windows host is affected by an elevation of privilege vulnerability.
File : smb_nt_ms15-004.nasl - Type : ACT_GATHER_INFO
2015-01-13Name : The remote Windows host is affected by a security feature bypass vulnerability.
File : smb_nt_ms15-006.nasl - Type : ACT_GATHER_INFO
2015-01-13Name : The remote Windows host is affected by a privilege escalation vulnerability.
File : smb_nt_ms15-008.nasl - Type : ACT_GATHER_INFO
2015-01-13Name : The remote Windows host is affected by a privilege escalation vulnerability.
File : smb_nt_ms15-001.nasl - Type : ACT_GATHER_INFO
Hide | Show 5 More...
idDescription
2014-12-09Name : The remote Windows host is affected by an information disclosure vulnerability.
File : smb_nt_ms14-085.nasl - Type : ACT_GATHER_INFO
2014-11-11Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms14-064.nasl - Type : ACT_GATHER_INFO
2014-10-22Name : The remote host is affected by a remote code execution vulnerability.
File : smb_kb3010060.nasl - Type : ACT_GATHER_INFO
2014-10-15Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms14-058.nasl - Type : ACT_GATHER_INFO
2014-10-15Name : The remote Windows host is affected by a remote code execution vulnerability.
File : smb_nt_ms14-060.nasl - Type : ACT_GATHER_INFO