PT-2016-2182 · Microsoft · Windows

Published

2016-06-14

Updated

2018-10-12

CVE-2016-3219

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version

Description The issue is related to insufficient access control in the kernel-mode driver of the Windows operating system. It allows a local attacker to elevate privileges using a specially crafted application.

Recommendations For Microsoft Windows versions prior to the fixed version, apply the patch provided by Microsoft to resolve the issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

BDU:2016-01535

CVE-2016-3219

Affected Products

Windows

PT-2016-2182 · Microsoft · Windows

CVE-2016-3219

Weakness Enumeration

Related Identifiers

Affected Products

References · 7