PT-2016-7260 · Microsoft · Windows 10+1

Published

2016-10-11

Updated

2018-10-12

CVE-2016-7188

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Microsoft Windows versions 10 Gold, 1511, and 1607

Description The issue is related to the mishandling of library loading by the Standard Collector Service in Windows Diagnostics Hub, allowing local users to gain privileges via a crafted application. This is an elevation-of-privilege issue that can affect the system.

Recommendations For Microsoft Windows versions 10 Gold, 1511, and 1607, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

LPE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-264

Related Identifiers

CVE-2016-7188

Affected Products

Windows

Windows 10

PT-2016-7260 · Microsoft · Windows 10+1

CVE-2016-7188

Weakness Enumeration

Related Identifiers

Affected Products

References · 8