CVE-2016-7222

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions prior to the fixed version Windows 10 versions 1511 and 1607 Windows Server 2016

Description The issue is related to an elevation-of-privilege vulnerability. It allows local users to gain privileges via a crafted UNC pathname in a task. The vulnerability is also described as being caused by incorrect access restriction to files, which can be exploited by a local attacker using a specially crafted application to elevate their privileges.

Recommendations For Microsoft Windows 10 versions 1511 and 1607, update to a version that includes the fix for this issue. For Windows Server 2016, apply the necessary patch or update to resolve the vulnerability. As a temporary workaround, consider restricting access to the Task Scheduler and virtual hard disk driver to minimize the risk of exploitation.