CVE-2016-7223

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 8.1, 10 (Gold, 1511, and 1607), Windows Server versions 2012 (Gold and R2), 2016, and Windows RT 8.1

Description The Virtual Hard Disk Driver in Microsoft Windows does not properly restrict access to files, allowing local users to gain privileges via a crafted application. This issue may be exploited by an attacker to elevate their privileges on the system.

Recommendations For Microsoft Windows 8.1, update to a version that includes the fix for this issue. For Microsoft Windows 10 (Gold, 1511, and 1607), update to a version that includes the fix for this issue. For Microsoft Windows Server 2012 (Gold and R2) and 2016, update to a version that includes the fix for this issue. For Microsoft Windows RT 8.1, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.