JSON View XML View

Key Value
MTID M114436
Title (MS16-106) Microsoft Windows Graphics Component GDI Memory Handling Remote Code Execution (3185848)
Description A vulnerability in some versions of Microsoft Windows could lead to remote code execution.
Observation A vulnerability in some versions of Microsoft Windows could lead to remote code execution.

The flaw lies in the Graphics Component component. Successful exploitation by a remote attacker could result in the execution of arbitrary code. The exploit requires the user to open a vulnerable website, email or document.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-106

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS16-142
- Cumulative Update for Windows 10 Version 1511 (KB3198586): KB3198586
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3198586): KB3198586

https://technet.microsoft.com/library/security/MS16-142

Vendor Microsoft
Attack Vector Website or e-mail with malicious content
Importance 9
Impact 10.00084536000
Threat Score 9.33
Labels
Patch Tuesday
References
CVECVE-2016-3356
MSFTBulletinMS16-106
MSFTQNumber3185848
DISA IAVA2016-A-0240
MTIDM114436
CPEs
cpe:/a:microsoft:windows:10_version_1607
cpe:/a:microsoft:windows:10_version_1607::x64
Created At 2016-09-13 00:00:00 UTC
Updated At 2016-11-19 10:32:09 UTC

Back