| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS16-135 | Security Update for Windows Kernel-Mode Drivers (3199135) | WindowsVistax64EditionServicePack2 | Important | 09-11-2016 |
Technical Information
Brief overview of the risk:
This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.
Detailed Information on the risk:
An Information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.
To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.
WindowsVistax64EditionServicePack2To exploit the vulnerability, an attacker would have to log on to an affected system and run a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles memory addresses.
Further information on this exploit is available at : MS16-135
WindowsVistaServicePack2
WindowsServer2016forx64-basedSystems
WindowsServer2012R2(ServerCoreinstallation)
WindowsServer2012andWindowsServer2012R2
WindowsServer2012(ServerCoreinstallation)
WindowsServer2008R2forx64-basedSystemsServicePack1(ServerCoreinstallation)
WindowsServer2008R2forx64-basedSystemsServicePack1
WindowsServer2008forx64-basedSystemsServicePack2(ServerCoreinstallation)
WindowsServer2008forx64-basedSystemsServicePack2
WindowsServer2008forItanium-basedSystemsServicePack2
WindowsServer2008for32-bitSystemsServicePack2(ServerCoreinstallation)
WindowsServer2008for32-bitSystemsServicePack2
WindowsRT8.1[1]
Windows8.1forx64-basedSystems
Windows8.1for32-bitSystems
Windows8.1
Windows7forx64-basedSystemsServicePack1
Windows7for32-bitSystemsServicePack1
Windows10Version1607forx64-basedSystems
Windows10Version1607for32-bitSystems
Windows10Version1511forx64-basedSystems
Windows10Version1511for32-bitSystems
Windows10forx64-basedSystems
Windows10for32-bitSystems
Affected Software
WindowsVistax64EditionServicePack2WindowsVistaServicePack2
WindowsServer2016forx64-basedSystems
WindowsServer2012R2(ServerCoreinstallation)
WindowsServer2012andWindowsServer2012R2
WindowsServer2012(ServerCoreinstallation)
WindowsServer2008R2forx64-basedSystemsServicePack1(ServerCoreinstallation)
WindowsServer2008R2forx64-basedSystemsServicePack1
WindowsServer2008forx64-basedSystemsServicePack2(ServerCoreinstallation)
WindowsServer2008forx64-basedSystemsServicePack2
WindowsServer2008forItanium-basedSystemsServicePack2
WindowsServer2008for32-bitSystemsServicePack2(ServerCoreinstallation)
WindowsServer2008for32-bitSystemsServicePack2
WindowsRT8.1[1]
Windows8.1forx64-basedSystems
Windows8.1for32-bitSystems
Windows8.1
Windows7forx64-basedSystemsServicePack1
Windows7for32-bitSystemsServicePack1
Windows10Version1607forx64-basedSystems
Windows10Version1607for32-bitSystems
Windows10Version1511forx64-basedSystems
Windows10Version1511for32-bitSystems
Windows10forx64-basedSystems
Windows10for32-bitSystems