MS.Group.Policy.Remote.Code.Execution.Vulnerability.MS15-011
Description
Microsoft Group Policy control domain user or hosts permission.
The vulnerability could allow remote code execution if an attacker convinces a user with a domain-configured system to connect to an attacker-controlled network. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Affected Products
Windows Server 2003 Service Pack 2
Windows Server 2008 Service Pack 2
Windows Server 2008 R2 Service Pack 1
Windows Server 2012 and Windows Server 2012 R2
Windows Vista Service Pack 2
Windows 7 Service Pack 1
Windows 8 and Windows 8.1
Windows RT and Windows RT 8.1
Impact
Successful exploitation of this vulnerability will allow an attacker to execute arbitrary code, failed exploits may result in denial of service.
Recommended Actions
Please download and apply patches as instructed in https://technet.microsoft.com/library/security/MS15-011.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |