Дата обнаружения
|
09/08/2016 |
Уровень угрозы
|
Critical |
Описание
|
Multiple vulnerabilities were found in Microsoft Products (Extended Support Update). Malicious users can exploit these vulnerabilities to gain privileges, obtain sensitive information, execute arbitrary code, bypass security restrictions. Below is a complete list of vulnerabilities:
|
Эксплуатация
|
The following public exploits exists for this vulnerability: https://www.exploit-db.com/exploits/42960 https://www.exploit-db.com/exploits/40257 https://www.exploit-db.com/exploits/40256 https://www.exploit-db.com/exploits/40255 https://www.exploit-db.com/exploits/40409 Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details. |
Пораженные продукты
|
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) |
Решение
|
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel) |
Первичный источник обнаружения
|
CVE-2016-3308 CVE-2016-3309 CVE-2016-3329 CVE-2016-3301 CVE-2016-3303 CVE-2016-3304 CVE-2016-3311 CVE-2016-3237 CVE-2016-3326 CVE-2016-3327 CVE-2016-3293 CVE-2016-3310 |
Оказываемое влияние
?
|
ACE
[?]
OSI
[?]
SB
[?]
PE
[?]
|
Связанные продукты
|
Microsoft Internet Explorer Microsoft Lync Microsoft Office Microsoft Lync 2010 Attendee Microsoft Word Microsoft Windows Microsoft Windows Server Microsoft Windows Vista Microsoft Windows Server 2012 Microsoft Windows 8 Microsoft Windows 7 Microsoft Windows Server 2008 Windows RT Microsoft Windows 10 Microsoft Edge |
CVE-IDS
|
CVE-2016-32937.6Critical
CVE-2016-33292.6Warning CVE-2016-33272.6Warning CVE-2016-33262.6Warning CVE-2016-33117.2High CVE-2016-33107.2High CVE-2016-33097.2High CVE-2016-33087.2High CVE-2016-33049.3Critical CVE-2016-33039.3Critical CVE-2016-33019.3Critical CVE-2016-32376.8High |
KB list
|