Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB3164033
HistoryJun 14, 2016 - 7:00 a.m.

MS16-074: Description of the security update for Microsoft Graphics Component: June 14, 2016

2016-06-1407:00:00
Microsoft
support.microsoft.com
17

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.624 Medium

EPSS

Percentile

97.8%

JSON

MS16-074: Description of the security update for Microsoft Graphics Component: June 14, 2016

Summary

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if a user opens a specially crafted document or visits a specially crafted website.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-074.

More Information

Important

  • All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see
Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

__

Method 2: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS16-074 that corresponds to the version of Windows that you are running.

More Information

__

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

File Information

__

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB3164033-x86.msu 686D14D01063696F84170BC42CE0FC8BBEFA1E66 6ACAEA09416C49698BBDECE6BAD8A3572F075C2BCEEA3C963158EF8D4E40A03A
Windows8.1-KB3164033-x64.msu ED4479AD196283B73C860701E74EF2E320D4FE20 5234A6CD30B9DF3981642F1EE2A95FC507C5B0E2DD150EC93DC9D55058047F89
Windows6.0-KB3164033-x64.msu 71BDB53E9E36C3F53AB99A8FF2C2ABD751261192 3D858C4CD077E4EE653C59F020F001FC1EA1E68D76807D87A0B673C508C84053
Windows6.1-KB3164033-x64.msu 88EF597E01E7698390E5B805514F32B2E447012F 782192AEE0BE4794D205ADAC948785AE53B16DFB70CAE6BAD8AC31838C11B337
Windows6.1-KB3164033-x86.msu AC583A1DB08CF407FD0985C38FB3DB18B2ACAD25 7C9A765B643E93E34E3D89A196A6216AAEEB2E926BD9C7D961727B399A83E4DD
Windows6.1-KB3164033-ia64.msu 03C365D9DDB5876C34D0996CABE94F57490308B2 197CEC26B9A38647ADBC5D48C6AD176C533E71F4F62E9E3B631F9A9CBC3728D2
Windows6.0-KB3164033-x86.msu 8D2C7BACEFCB80B46BD09EF2005DDB444A90CEB6 4A2FE50C1B7CDE3B003CF567DFDA3C3E053F28B98D9937D4D3BDD50A38BBF028
Windows6.0-KB3164033-ia64.msu 081247AB23CE1D97B8C1F36672725C5CE4988CD6 00391F1310555CCB98C487E7C1FC3239788D880A2EACF16E39A8E0521B1C9A72

__

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). Be aware that dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time bias. The dates and times may also change when you perform certain operations on the files.Windows 8.1 and Windows Server 2012 R2 file informationNotes

* The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers, as shown in the following table.Version Product Milestone Service branch
6.3.960 0.16xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR
6.3.960 0.17xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR
6.3.960 0.18xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 315,224| 18-May-2016| 05:31| x86
    Atmlib.dll| 5.1.2.248| 35,840| 13-May-2016| 22:19| x86
    Dciman32.dll| 6.3.9600.17415| 11,776| 29-Oct-2014| 02:00| x86
    Fontsub.dll| 6.3.9600.17415| 77,824| 29-Oct-2014| 02:00| x86
    Lpk.dll| 6.3.9600.17415| 3,072| 29-Oct-2014| 02:04| x86
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 372,568| 18-May-2016| 05:31| x64
    Atmlib.dll| 5.1.2.248| 44,032| 13-May-2016| 23:04| x64
    Dciman32.dll| 6.3.9600.17415| 14,848| 29-Oct-2014| 02:44| x64
    Fontsub.dll| 6.3.9600.17415| 96,256| 29-Oct-2014| 02:44| x64
    Lpk.dll| 6.3.9600.17415| 3,072| 29-Oct-2014| 02:49| x64
    Atmfd.dll| 5.1.2.248| 315,224| 18-May-2016| 05:31| x86
    Atmlib.dll| 5.1.2.248| 35,840| 13-May-2016| 22:19| x86
    Dciman32.dll| 6.3.9600.17415| 11,776| 29-Oct-2014| 02:00| x86
    Fontsub.dll| 6.3.9600.17415| 77,824| 29-Oct-2014| 02:00| x86
    Lpk.dll| 6.3.9600.17415| 3,072| 29-Oct-2014| 02:04| x86
    Windows Vista and Windows Server 2008 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers, as shown in the following table.Version| Product| Milestone| Service branch
    —|—|—|—
    6.0.600 2.19xxx| Windows Vista or Windows Server 2008| SP2| GDR
    6.0.600 2.23xxx| Windows Vista or Windows Server 2008| SP2| LDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 383,208| 14-May-2016| 15:58| x64
    Atmlib.dll| 5.1.2.248| 48,128| 14-May-2016| 15:53| x64
    Dciman32.dll| 6.0.6002.18051| 14,336| 15-Jun-2009| 15:10| x64
    Fontsub.dll| 6.0.6002.18272| 96,256| 16-Jun-2010| 16:30| x64
    Lpk.dll| 6.0.6001.18000| 32,768| 19-Jan-2008| 08:02| x64
    Atmfd.dll| 5.1.2.248| 383,208| 14-May-2016| 15:40| x64
    Atmlib.dll| 5.1.2.248| 48,128| 14-May-2016| 15:34| x64
    Dciman32.dll| 6.0.6002.23974| 14,336| 14-May-2016| 15:34| x64
    Fontsub.dll| 6.0.6002.23974| 96,256| 14-May-2016| 15:34| x64
    Lpk.dll| 6.0.6002.23974| 32,768| 14-May-2016| 15:34| x64
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:47| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:41| x86
    Dciman32.dll| 6.0.6002.18051| 10,240| 15-Jun-2009| 14:51| x86
    Fontsub.dll| 6.0.6002.18272| 72,704| 16-Jun-2010| 15:30| x86
    Lpk.dll| 6.0.6002.18005| 23,552| 11-Apr-2009| 06:26| x86
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:20| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:14| x86
    Dciman32.dll| 6.0.6002.23974| 10,240| 14-May-2016| 15:14| x86
    Fontsub.dll| 6.0.6002.23974| 72,704| 14-May-2016| 15:14| x86
    Lpk.dll| 6.0.6002.23974| 23,552| 14-May-2016| 15:15| x86
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:47| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:41| x86
    Dciman32.dll| 6.0.6002.18051| 10,240| 15-Jun-2009| 14:51| x86
    Fontsub.dll| 6.0.6002.18272| 72,704| 16-Jun-2010| 15:30| x86
    Lpk.dll| 6.0.6002.18051| 23,552| 15-Jun-2009| 14:52| x86
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:20| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:14| x86
    Dciman32.dll| 6.0.6002.23974| 10,240| 14-May-2016| 15:14| x86
    Fontsub.dll| 6.0.6002.23974| 72,704| 14-May-2016| 15:14| x86
    Lpk.dll| 6.0.6002.23974| 23,552| 14-May-2016| 15:14| x86
    For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 793,320| 14-May-2016| 15:35| IA-64
    Atmlib.dll| 5.1.2.248| 92,160| 14-May-2016| 15:30| IA-64
    Dciman32.dll| 6.0.6001.18000| 29,184| 19-Jan-2008| 08:26| IA-64
    Fontsub.dll| 6.0.6002.18124| 196,096| 19-Oct-2009| 13:31| IA-64
    Lpk.dll| 6.0.6001.18000| 68,608| 19-Jan-2008| 08:28| IA-64
    Atmfd.dll| 5.1.2.248| 793,320| 14-May-2016| 15:17| IA-64
    Atmlib.dll| 5.1.2.248| 92,160| 14-May-2016| 15:11| IA-64
    Dciman32.dll| 6.0.6002.23974| 29,184| 14-May-2016| 15:12| IA-64
    Fontsub.dll| 6.0.6002.23974| 196,096| 14-May-2016| 15:12| IA-64
    Lpk.dll| 6.0.6002.23974| 68,608| 14-May-2016| 15:12| IA-64
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:47| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:41| x86
    Dciman32.dll| 6.0.6002.18051| 10,240| 15-Jun-2009| 14:51| x86
    Fontsub.dll| 6.0.6002.18272| 72,704| 16-Jun-2010| 15:30| x86
    Lpk.dll| 6.0.6002.18005| 23,552| 11-Apr-2009| 06:26| x86
    Atmfd.dll| 5.1.2.248| 306,408| 14-May-2016| 15:20| x86
    Atmlib.dll| 5.1.2.248| 34,304| 14-May-2016| 15:14| x86
    Dciman32.dll| 6.0.6002.23974| 10,240| 14-May-2016| 15:14| x86
    Fontsub.dll| 6.0.6002.23974| 72,704| 14-May-2016| 15:14| x86
    Lpk.dll| 6.0.6002.23974| 23,552| 14-May-2016| 15:15| x86
    Windows 7 and Windows Server 2008 R2 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table:Version| Product| Milestone| Service branch
    —|—|—|—
    6.1.760 1.18xxx| Windows 7 or Windows Server 2008 R2| SP1| GDR
    6.1.760 1.23 xxx| Windows 7 or Windows Server 2008 R2| SP1| LDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 382,184| 13-May-2016| 22:15| x64
    Atmlib.dll| 5.1.2.248| 46,080| 13-May-2016| 22:09| x64
    Dciman32.dll| 6.1.7601.23453| 14,336| 13-May-2016| 22:09| x64
    Fontsub.dll| 6.1.7601.23453| 100,864| 13-May-2016| 22:09| x64
    Lpk.dll| 6.1.7601.23453| 41,472| 13-May-2016| 22:09| x64
    Atmfd.dll| 5.1.2.248| 308,456| 13-May-2016| 21:54| x86
    Atmlib.dll| 5.1.2.248| 34,304| 13-May-2016| 21:27| x86
    Dciman32.dll| 6.1.7601.23453| 10,240| 13-May-2016| 21:49| x86
    Fontsub.dll| 6.1.7601.23453| 70,656| 13-May-2016| 21:49| x86
    Lpk.dll| 6.1.7601.23453| 25,600| 13-May-2016| 21:50| x86
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 308,456| 13-May-2016| 21:54| x86
    Atmlib.dll| 5.1.2.248| 34,304| 13-May-2016| 21:27| x86
    Dciman32.dll| 6.1.7601.23453| 10,240| 13-May-2016| 21:49| x86
    Fontsub.dll| 6.1.7601.23453| 70,656| 13-May-2016| 21:49| x86
    Lpk.dll| 6.1.7601.23453| 26,112| 13-May-2016| 21:49| x86
    For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Atmfd.dll| 5.1.2.248| 793,320| 13-May-2016| 21:50| IA-64
    Atmlib.dll| 5.1.2.248| 91,648| 13-May-2016| 21:46| IA-64
    Dciman32.dll| 6.1.7601.23453| 32,768| 13-May-2016| 21:46| IA-64
    Fontsub.dll| 6.1.7601.23453| 197,632| 13-May-2016| 21:46| IA-64
    Lpk.dll| 6.1.7601.23453| 73,216| 13-May-2016| 21:46| IA-64
    Atmfd.dll| 5.1.2.248| 308,456| 13-May-2016| 21:54| x86
    Atmlib.dll| 5.1.2.248| 34,304| 13-May-2016| 21:27| x86
    Dciman32.dll| 6.1.7601.23453| 10,240| 13-May-2016| 21:49| x86
    Fontsub.dll| 6.1.7601.23453| 70,656| 13-May-2016| 21:49| x86
    Lpk.dll| 6.1.7601.23453| 25,600| 13-May-2016| 21:50| x86

Related

zdt 1
checkpoint_advisories 1
symantec 1
cve 2
mscve 1
prion 2
nessus 1
mskb 3
openvas 1
threatpost 1
kaspersky 2
zdt
zdt
Microsoft Windows - Kernel ATMFD.dll NamedEscape 0x250C Pool Corruption (MS16-074)
2016-06-21 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows ATMFD.DLL Elevation of Privilege (MS16-074: CVE-2016-3220)
2016-06-14 00:00:00
symantec
symantec
Microsoft Windows ATMFD CVE-2016-3220 Privilege Escalation Vulnerability
2016-06-14 00:00:00
cve
cve
CVE-2016-3220
2016-06-16 01:59:00
CVE-2017-0038
2017-02-20 16:59:00
mscve
mscve
OpenType Font Driver Elevation of Privilege Vulnerability
2016-06-14 07:00:00
prion
prion
Privilege escalation
2016-06-16 01:59:00
Design/Logic Flaw
2017-02-20 16:59:00
nessus
nessus
MS16-074: Security Update for Microsoft Graphics Component (3164036)
2016-06-14 00:00:00
mskb
mskb
MS16-074: Security Update for Microsoft graphics component: June 14, 2016
2016-06-14 00:00:00
Cumulative update for Windows 10: June 14, 2016
2016-06-16 07:00:00
Cumulative Update for Windows 10 version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016
2016-06-16 07:00:00
openvas
openvas
Microsoft Graphics Component Multiple Vulnerabilities (3164036)
2016-06-15 00:00:00
threatpost
threatpost
Google Discloses Unpatched Microsoft Vulnerability
2017-02-21 13:02:46
kaspersky
kaspersky
KLA11911 Multiple vulnerabilites in Microsoft Products (ESU)
2016-06-14 00:00:00
KLA10825 Multiple vulnerabilities in Microsoft Windows
2016-06-14 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

6.8 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.624 Medium

EPSS

Percentile

97.8%

JSON
Related for KB3164033
zdt1checkpoint_advisories1symantec1cve2mscve1prion2nessus1mskb3openvas1threatpost1kaspersky2