8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.96 High
EPSS
Percentile
99.5%
Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to bypass security restrictions, gain privileges execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities
Public exploits exist for this vulnerability.
CVE-2016-0007 high
CVE-2016-0006 high
CVE-2016-0020 high
CVE-2016-0009 critical
CVE-2016-0015 critical
CVE-2016-0016 high
CVE-2016-0018 high
CVE-2016-0019 critical
CVE-2016-0014 high
CVE-2016-0002 critical
Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.
support.microsoft.com/kb/3108664
support.microsoft.com/kb/3109560
support.microsoft.com/kb/3110329
support.microsoft.com/kb/3121212
support.microsoft.com/kb/3121461
support.microsoft.com/kb/3121918
support.microsoft.com/kb/3124000
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0002
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0006
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0007
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0009
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0014
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0015
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0016
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0018
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0019
portal.msrc.microsoft.com/api/security-guidance/en-US/CVE/CVE-2016-0020
statistics.securelist.com/
threats.kaspersky.com/en/product/Microsoft-Windows-10/
threats.kaspersky.com/en/product/Microsoft-Windows-7/
threats.kaspersky.com/en/product/Microsoft-Windows-8/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2008/
threats.kaspersky.com/en/product/Microsoft-Windows-Server-2012/
threats.kaspersky.com/en/product/Microsoft-Windows-Server/
threats.kaspersky.com/en/product/Microsoft-Windows-Vista-4/
threats.kaspersky.com/en/product/Microsoft-Windows/
threats.kaspersky.com/en/product/Windows-RT/
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
9 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.96 High
EPSS
Percentile
99.5%