KLA10897Multiple vulnerabilities in Microsoft Windows

2016-11-08T00:00:00
ID KLA10897
Type kaspersky
Reporter Kaspersky Lab
Modified 2018-07-05T00:00:00

Description

CVSS:

9.3

Detect date:

11/08/2016

Severity:

Critical

Description:

Multiple serious vulnerabilities have been found in Microsoft Windows. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, obtain sensitive information or gain pribileges.

Affected products:

Microsoft Windows Vista Service Pack 2
Microsoft Windows 7 Service Pack 1
Microsoft Windows 8.1
Microsoft Windows RT 8.1
Microsoft Windows 10
Microsoft Windows Server 2008 Service Pack 2
Microsoft Windows Server 2008 R2 Service Pack 1
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016

Solution:

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories:

MS16-135
MS16-138
MS16-139
MS16-137
MS16-134
MS16-140
MS16-132
MS16-130
MS16-131
MS16-132
MS16-123

Impacts:

ACE

Related products:

Windows RT

CVE-IDS:

CVE-2016-7226
CVE-2016-7225
CVE-2016-7224
CVE-2016-7223
CVE-2016-7222
CVE-2016-7221
CVE-2016-7220
CVE-2016-7218
CVE-2016-7217
CVE-2016-7216
CVE-2016-7215
CVE-2016-7214
CVE-2016-7212
CVE-2016-7210
CVE-2016-7205
CVE-2016-7202
CVE-2016-7184
CVE-2016-3343
CVE-2016-3342
CVE-2016-3340
CVE-2016-3338
CVE-2016-3335
CVE-2016-3334
CVE-2016-3333
CVE-2016-3332
CVE-2016-0026
CVE-2016-7237
CVE-2016-7238
CVE-2016-7246
CVE-2016-7247
CVE-2016-7248
CVE-2016-7255
CVE-2016-7256

Microsoft official advisories:

MS16-135

KB list:

3181707
3193418
3194371
3196718
3197867
3197868
3197873
3197874
3197876
3197877
3198218
3198234
3198483
3198510
3198585
3198586
3200970
3203859
3208481