CVE-2015-7359
The (1) IsVolumeAccessibleByCurrentUser and (2) MountDevice methods in Ntdriver.c in TrueCrypt 7.0, VeraCrypt before 1.15, and CipherShed, when running on Windows, do not check the impersonation level of impersonation tokens, which allows local users to impersonate a user at SecurityIdentify level and gain access to other users' mounted encrypted volumes.
- Published date
- 2017-10-03T01:29Z
- Last modification date
- 2021-06-28T18:20Z
- Assigner
- cve@mitre.org
- Problem type
- CWE-264
Impact
- CVSS v3 vector string
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
| Name | URL | Source | Tags |
|---|---|---|---|
| https://veracrypt.codeplex.com/wikipage?title=Release%20Notes | https://veracrypt.codeplex.com/wikipage?title=Release%20Notes | CONFIRM | Release Notes, Vendor Advisory |
| https://code.google.com/p/google-security-research/issues/detail?id=537 | https://code.google.com/p/google-security-research/issues/detail?id=537 | MISC | Third Party Advisory, Issue Tracking |
| [oss-security] 20150924 Re: CVE Request - TrueCrypt 7.1a and VeraCrypt 1.14 Local Elevation of Privilege | http://www.openwall.com/lists/oss-security/2015/09/24/3 | MLIST | Issue Tracking, Mailing List, Third Party Advisory |
| [oss-security] 20150922 CVE Request - TrueCrypt 7.1a and VeraCrypt 1.14 Local Elevation of Privilege | http://www.openwall.com/lists/oss-security/2015/09/22/7 | MLIST | Mailing List, Third Party Advisory |
| http://packetstormsecurity.com/files/133877/Truecrypt-7-Privilege-Escalation.html | http://packetstormsecurity.com/files/133877/Truecrypt-7-Privilege-Escalation.html | MISC | Third Party Advisory, VDB Entry |