13 Sep 2016
CVE-2016-3371 Vulnerability
Publié par . Publié dans Gain information
The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 does not properly enforce permissions, which allows local users to obtain sensitive information via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability." (CVSS:0.0) (Last Update:2016-09-14)
Vulnerability Details : The kernel API in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 does not properly enforce permissions, which allows local users to obtain sensitive information via a crafted application, aka "Windows Kernel Elevation of Privilege Vulnerability." Publish Date : 2016-09-14 Last Update Date : 2016-09-14 - CVSS Scores & Vulnerability Types CVSS Score | 0.0 | Confidentiality Impact | ??? | Integrity Impact | ??? | Availability Impact | ??? | Access Complexity | ??? | Authentication | ??? | Gained Access | None | Vulnerability Type(s) | Obtain Information | CWE ID | CWE id is not defined for this vulnerability | | | - Products Affected By CVE-2016-3371 # | Product Type | Vendor | Product | Version | Update | Edition | Language | | No vulnerable product found. If the vulnerability is created recently it may take a few days to gather vulnerable products list and other information like cvss scores. Please check again in a few days. | - References For CVE-2016-3371 http://technet.microsoft.com/en-us/security/bulletin/ms16-111 Microsoft Security Bulletin MS16-111 Security Update for Windows Kernel This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker runs a specially crafted application on a target system.
Vulnerabilities addressed in this bulletin:
- Windows Session Object Elevation of Privilege Vulnerability
- Windows Session Object Elevation of Privilege Vulnerability
- Windows Kernel Elevation of Privilege Vulnerability
- Windows Kernel Elevation of Privilege Vulnerability
- Windows Kernel Elevation of Privilege Vulnerability
Release Date:2016-09-13 | | |
- Metasploit Modules Related To CVE-2016-3371There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)
| |