This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


Vendor Microsoft First view 2015-02-10
Product Virtual Machine Manager Last view 2015-02-10
Version 2012 Type Application
Update r2_rollup4  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
CPE Product cpe:2.3:a:microsoft:virtual_machine_manager

Activity : Overall

Related : CVE

  Date Alert Description
6.9 2015-02-10 CVE-2015-0012

Microsoft System Center Virtual Machine Manager (VMM) 2012 R2 Update Rollup 4 does not properly validate the roles of users, which allows local users to obtain server and virtual-machine administrative privileges by establishing a server session with Active Directory credentials, aka "Virtual Machine Manager Elevation of Privilege Vulnerability."

CWE : Common Weakness Enumeration

100% (1) CWE-264 Permissions, Privileges, and Access Controls

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0036 Microsoft Virtual Machine Manager Privilege Escalation Vulnerability (MS15-017)
Severity: Category II - VMSKEY: V0058749

Nessus® Vulnerability Scanner

id Description
2015-02-10 Name: The remote host is affected by a privilege escalation vulnerability.
File: smb_nt_ms15-017.nasl - Type: ACT_GATHER_INFO