Дата обнаружения
|
09/02/2016 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, execute arbitrary code, bypass security restrictions or gain privileges. Below is a complete list of vulnerabilities
Technical details To mitigate vulnerability (3) you can also implement one of workarounds proposed by Microsoft: stop opening suspicious file attachments, remove journal files association, disable Windows Journal feature or deny access to Journal.exe. For further instructions about this workarounds look at MS16-013 advisory. Successful exploitation of vulnerability (4) allows attacker to run arbitrary code in kernel mode. To exploit vulnerability (6) attacker could send specially designed input that use «change batch» structure. Successful exploitation of this vulnerability can cause target SyncShareSvc service to stop responding. Vulnerability (7) can be exploited via connecting workstation to a malicious Key Distribution Center. Successful exploitation of this vulnerability allows attacker to bypass Kerberos authentication and decrypt drives protected by BitLocker. Attack by this vector available only if domain user logged in on the target machine and target system must have BitLocker enabled without a PIN or USB key. You can mitigate this vulnerability by disabling cashing of domain logon information. For further workaround instructions look at MS16-014 advisory. To mitigate vulnerability (8) you can disable WebDAV driver. For further workaround instructions look at MS16-016 advisory. To mitigate vulnerability (9) you can disable RDP. For further instructions look at MS16-017 advisory. |
Пораженные продукты
|
Microsoft Windows Vista Service Pack 2 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2016-0041 CVE-2016-0040 CVE-2016-0036 CVE-2016-0051 CVE-2016-0050 CVE-2016-0049 CVE-2016-0048 CVE-2016-0046 CVE-2016-0044 CVE-2016-0042 CVE-2016-0038 CVE-2016-0058 |
Оказываемое влияние
?
|
ACE
[?]
DoS
[?]
SB
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 |
CVE-IDS
|
CVE-2016-00417.2High
CVE-2016-00407.2High CVE-2016-00369.3Critical CVE-2016-00517.2High CVE-2016-00505.0Critical CVE-2016-00492.1Warning CVE-2016-00487.2High CVE-2016-00469.3Critical CVE-2016-00445.0Critical CVE-2016-00427.2High CVE-2016-00389.3Critical CVE-2016-00589.3Critical |