8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.795 High
EPSS
Percentile
98.2%
04/12/2016
Critical
Multiple serious vulnerabilities have been found in Microsoft Graphics Component as used in multiple Microsoft products. Malicious users can exploit these vulnerabilities to execute arbitrary code or gain privileges.
Microsoft Live Meeting 2007 Console
Microsoft Windows Vista Service Pack 2
Microsoft Windows Server 2008 Service Pack 2
Microsoft Windows 7 Service Pack 1
Microsoft Windows Server 2008 Service Pack 1
Microsoft Windows 8.1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows RT 8.1
Microsoft Windows 10
Microsoft Office 2007 Service Pack 3
Microsoft Office 2010 Service Pack 2
Microsoft Word Viewer
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5/3.5.1
Microsoft Skype for Business 2016
Microsoft Skype for Business Basic 2016
Microsoft Lync 2013 Service Pack 1
Microsoft Lync 2013 Basic Service Pack 1
Microsoft Lync 2010
Microsoft Lync 2010 Attendee
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
CVE-2016-0143
CVE-2016-0145
CVE-2016-0165
CVE-2016-0167
ACE
CVE-2016-01437.8Critical
CVE-2016-01458.8Critical
CVE-2016-01657.8Critical
CVE-2016-01677.8Critical
3147461
3147458
3145739
3114960
3114985
3114566
3144429
3114944
3144432
3144427
3144428
3114542
3144431
3142045
3142042
3142043
3142041
3148522
Public exploits exist for this vulnerability.
support.microsoft.com/kb/3114542
support.microsoft.com/kb/3114566
support.microsoft.com/kb/3114944
support.microsoft.com/kb/3114960
support.microsoft.com/kb/3114985
support.microsoft.com/kb/3142041
support.microsoft.com/kb/3142042
support.microsoft.com/kb/3142043
support.microsoft.com/kb/3142045
support.microsoft.com/kb/3144427
support.microsoft.com/kb/3144428
support.microsoft.com/kb/3144429
support.microsoft.com/kb/3144431
support.microsoft.com/kb/3144432
support.microsoft.com/kb/3145739
support.microsoft.com/kb/3147458
support.microsoft.com/kb/3147461
support.microsoft.com/kb/3148522
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0143
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0145
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0165
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-0167
portal.msrc.microsoft.com/en-us/security-guidance
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0143
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0145
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0165
portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2016-0167
statistics.securelist.com/vulnerability-scan/month
threats.kaspersky.com/en/class/Exploit/
threats.kaspersky.com/en/product/Microsoft-.NET-Framework/
threats.kaspersky.com/en/product/Microsoft-Lync/
threats.kaspersky.com/en/product/Microsoft-Office/
threats.kaspersky.com/en/product/Microsoft-Windows-10/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-8/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Vista-4/
threats.kaspersky.com/en/product/Windows-RT/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9.2 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.795 High
EPSS
Percentile
98.2%