JSON View XML View

Key Value
MTID M115528
Title (MS16-135) Microsoft Windows Kernel Privilege Escalation III (3199135)
Description A vulnerability in some versions of Microsoft Windows could lead to privilege escalation.
Observation A vulnerability in some versions of Microsoft Windows could lead to privilege escalation.

The flaw lies in the Kernel component.Successful exploitation could allow a local user to gain elevated privileges.The exploit requires the attacker to have valid credentials to the vulnerable system.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-135

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS16-151
- Cumulative Update for Windows 10 (KB3205383): KB3205383
- Cumulative Update for Windows 10 Version 1511 (KB3205386): KB3205386
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3205386): KB3205386
- WES09 and POSReady 2009: KB3204723
- Microsoft Windows Server 2008: KB3204723
- Microsoft Windows Server 2008 x64 Edition: KB3204723
- Microsoft Windows Vista: KB3204723
- Microsoft Windows Vista for x64-based Systems: KB3204723

The patches for the following products are superseded by patches provided in: MS17-001
- Cumulative Update for Windows 10 Version 1607 (KB3213986): KB3213986

https://technet.microsoft.com/library/security/MS16-151
https://technet.microsoft.com/library/security/MS17-001

Vendor Microsoft
Attack Vector Authenticated locally logged on user with limited privileges
Importance 5
Impact 10.00084536000
Threat Score 7.15
Labels
Patch Tuesday
References
CVECVE-2016-7215
MSFTBulletinMS16-135
MSFTQNumber3199135
DISA IAVA2016-A-0322
MTIDM115528
CPEs
cpe:/o:microsoft:windows_vista:sp2
cpe:/o:microsoft:windows_2008_x64:sp2
cpe:/o:microsoft:windows_vista::sp2:x64
cpe:/o:microsoft:windows:2008:sp2
cpe:/o:microsoft:windows_7:sp1
cpe:/o:microsoft:windows_7::sp1:x64
cpe:/o:microsoft:windows_server_2012
cpe:/o:microsoft:windows_server_2008:r2:sp1
cpe:/o:microsoft:windows_8.1
cpe:/o:microsoft:windows_8.1:::x64
cpe:/o:microsoft:windows_server_2012:r2
cpe:/o:microsoft:windows_rt:8.1
cpe:/o:microsoft:windows_10
cpe:/o:microsoft:windows_10:::x64
cpe:/o:microsoft:windows:10_version_1511:10_version_1511
cpe:/o:microsoft:windows:10_version_1511_x64:10_version_1511_x64
cpe:/a:microsoft:windows:10_version_1607
cpe:/a:microsoft:windows:10_version_1607::x64
cpe:/a:microsoft:windows_server:2016
Created At 2016-11-08 00:00:00 UTC
Updated At 2017-02-16 15:09:50 UTC

Back