Summary
Rejected Advisory MS15-096 (KB3072595) with Rejected Issue CVE-2015-2535
Synopsis
The sole issue with the CVE identifier CVE-2015-2423 within mentioned advisory MS15-096 is rejected due to having a too weak gain considering the exploitation effort.
Reason for Rating:
The proposed exploitation scenario requires permissions to join machines to a domain. Such level of access is considered to be too privileged and such users have to be treated as trusted in this context and thus the follow-up gain is considered as too weakAdditional Information
References:
[1] https://technet.microsoft.com/en-us/library/security/ms15-096.aspx