JSON View XML View

Key Value
MTID M116141
Title (MS16-146) Microsoft Windows GDI Information Disclosure (3204066)
Description A vulnerability in some versions of Microsoft Windows could lead to information disclosure.
Observation A vulnerability in some versions of Microsoft Windows could lead to information disclosure.

The flaw occurs when the Windows GDI component improperly discloses the contents of its memory. Successful exploitation by a remote attacker could result in the disclosure of sensitive information.
Recommendation The vendor has released an update to address this issue.

https://technet.microsoft.com/library/security/MS16-146

Superseded patch information:

The patches for the following products are superseded by patches provided in: MS17-001
- Cumulative Update for Windows 10 (KB3210720): KB3210720
- Cumulative Update for Windows 10 for x64-based Systems (KB3210720): KB3210720
- Cumulative Update for Windows 10 Version 1511 (KB3210721): KB3210721
- Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3210721): KB3210721

https://technet.microsoft.com/library/security/MS17-001

Vendor Microsoft
Attack Vector Website or e-mail with malicious content
Importance 5
Impact 2.8627500
Threat Score 4.3
Labels
Patch Tuesday
References
CVECVE-2016-7257
MSFTBulletinMS16-146
MSFTQNumber3204066
DISA IAVA2016-A-0346
MTIDM116141
CPEs
cpe:/o:microsoft:windows_server_2008::sp2:x64
cpe:/o:microsoft:windows_vista::sp2:x64
cpe:/o:microsoft:windows_server_2008:r2:sp1:itanium
cpe:/o:microsoft:windows_vista::sp2
cpe:/o:microsoft:windows_7::sp1:x64
cpe:/o:microsoft:windows_server_2008:r2:sp1:x64
cpe:/o:microsoft:windows_server_2008:-:sp2:itanium
cpe:/o:microsoft:windows_7::sp1:x86
cpe:/o:microsoft:windows_server_2008:-:sp2:x86
Created At 2016-12-13 00:00:00 UTC
Updated At 2017-02-16 15:09:51 UTC

Back