Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA11831
HistoryJul 18, 2016 - 12:00 a.m.

KLA11831 OSI vulnerability in Microsoft Windows

2016-07-1800:00:00
Kaspersky Lab
threats.kaspersky.com
13

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

2.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

3.7 Low

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.8%

JSON

An information disclosure vulnerability vulnerability was found in Microsoft Windows. Malicious users can exploit this vulnerability to obtain sensitive information.

Original advisories

CVE-2016-3272

Related products

Microsoft-Windows

Microsoft-Windows-Server

Microsoft-Windows-Server-2012

Microsoft-Windows-8

Windows-RT

Microsoft-Windows-10

CVE list

CVE-2016-3272 warning

KB list

3172985

3163912

3169704

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Impacts

  • OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

  • PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

  • Windows 10 Version 1511 for 32-bit SystemsWindows Server 2012 (Server Core installation)Windows Server 2012 R2 (Server Core installation)Windows 10 Version 1511 for x64-based SystemsWindows 8.1 for 32-bit systemsWindows Server 2012Windows 10 for x64-based SystemsWindows Server 2012 R2Windows RT 8.1Windows 8.1 for x64-based systemsWindows 10 for 32-bit Systems

Related

cve 1
nvd 1
mscve 1
symantec 1
mskb 4
prion 1
cvelist 1
openvas 1
nessus 1
cve
cve
CVE-2016-3272
2016-07-13 01:59:27
nvd
nvd
CVE-2016-3272
2016-07-13 01:59:27
mscve
mscve
Windows Kernel Information Disclosure Vulnerability
2016-07-18 07:00:00
symantec
symantec
Microsoft Windows Kernel CVE-2016-3272 Local Information Disclosure Vulnerability
2016-07-12 00:00:00
mskb
mskb
MS16-092: Description of the security update for Windows Kernel: July 12, 2016
2016-07-18 07:00:00
MS16-092: Security update for Windows Kernel: July 12, 2016
2016-07-12 00:00:00
Cumulative update for Windows 10: July 12, 2016
2016-07-18 07:00:00
prion
prion
Information disclosure
2016-07-13 01:59:00
cvelist
cvelist
CVE-2016-3272
2016-07-13 01:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (3171910)
2016-07-13 00:00:00
nessus
nessus
MS16-092: Security Update for Windows Kernel (3171910)
2016-07-12 00:00:00

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

2.8 Low

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:N/A:N

3.7 Low

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.8%

JSON
Related for KLA11831
cve1nvd1mscve1symantec1mskb4prion1cvelist1openvas1nessus1