Дата обнаружения
|
14/06/2016 |
Уровень угрозы
|
Critical |
Описание
|
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, bypass security restrictions, cause denial of service, gain privileges or obtain sensitive information. Below is a complete list of vulnerabilities
Technical details Vulnerability (1) can be exploited only when DNS server is configured. Vulnerability (2) can be exploited by attack against traffic between a domain controller and target machine. Domain-joined systems with server running Windows Server 2012 and above and clients running Windows 8 and above. Vulnerability (4) related to Virtual PCI. Vulnerability (5) related to GDI32.dll Vulnerability (7) related to ATMFD.dll Vulnerability (8) can be exploited via forwarding an authentication request for another service running on the same machine. To mitigate this vulnerability you can enable Extended Protection for Authentication for SMB server. For further instructions, please take a look at original MS16-075 advisory listed below. Vulnerability (10) related to WPAD and caused by falling back to a vulnerable proxy discovery process in some situations. To mitigate this vulnerability you can disable WINSNetBT name resolution or stop WPAD using a host file entry. For further instructions about mitigation you can take a look at original MS16-077 advisory listed below. Vulnerability (11) can be mitigated via stopping WPAD useing a host file entry. For further instructions about mitigation you can take a look at original MS16-077 advisory listed below. |
Пораженные продукты
|
Microsoft Windows Vista Service Pack 2 |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2016-3215 CVE-2016-3213 CVE-2016-3203 CVE-2016-3201 CVE-2016-3220 CVE-2016-3219 CVE-2016-3218 CVE-2016-3216 CVE-2016-3299 CVE-2016-3236 CVE-2016-3232 CVE-2016-3231 CVE-2016-3228 CVE-2016-3227 CVE-2016-3225 CVE-2016-3223 CVE-2016-3221 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
DoS
[?]
SB
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 |
CVE-IDS
|
CVE-2016-32154.3Warning
CVE-2016-32139.3Critical CVE-2016-32039.3Critical CVE-2016-32014.3Warning CVE-2016-32206.9High CVE-2016-32196.9High CVE-2016-32186.9High CVE-2016-32164.3Warning CVE-2016-32994.3Warning CVE-2016-32322.1Warning CVE-2016-32317.2High CVE-2016-32289.0Critical CVE-2016-32256.9High CVE-2016-32239.3Critical CVE-2016-32216.9High |