Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB3177725
HistoryAug 09, 2016 - 7:00 a.m.

MS16-098: Description of the security update for Windows kernel-mode drivers: August 9, 2016

2016-08-0907:00:00
Microsoft
support.microsoft.com
32

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.8%

JSON

MS16-098: Description of the security update for Windows kernel-mode drivers: August 9, 2016

Summary

This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-098.

More Information

Important

  • All future security and nonsecurity updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

Known issues

After you apply this security update and you print multiple documents in succession, the first two documents may print successfully. However, the third and subsequent documents may not print.

To resolve this issue, install update 3187022. For more information, click the following article number to view the article in the Microsoft Knowledge Base:3187022 Print functionality is broken after any of the MS16-098 security updates are installed This problem is also resolved in Microsoft Security Bulletin MS16-106.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see
Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

Method 3: Microsoft Download Center

You can obtain the stand-alone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.

Click the download link in Microsoft Security Bulletin MS16-098 that corresponds to the version of Windows that you are running.

More Information

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

File Information

__

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB3177725-x86.msu 155B2831B66F4186BE0A7181722C5D2DBF2A47A9 719F5AE32B26D37ACBD32F72103169E5823815EAB97F26D57E600E1DF7E793B2
Windows8-RT-KB3177725-x64.msu A2DEC6C4BB5EF29E6551D27F8A8DCB44AA3E5F22 0B99B50D1F94A4C4EEDB07F0272B49DDF80FED31F416EDCE0326DA80A1563A63
Windows6.0-KB3177725-x86.msu 3812D050DEEAA13B0DFA18B4C620FFCD421AC7F1 0D7B6B3BC3D3B0BF1191B0AB2BBE8A3EEB34139E973A3B3026752C7E2F669310
Windows6.1-KB3177725-x86.msu A481F107D897B7EC87BC24ED2B651C4FAB19C6EF 1226DC1D83A14CCD9E4D6511B3D329917F08E049B05F68E6699042B4D1E58339
Windows6.1-KB3177725-x64.msu 75AC8F73407FAF6DE6B4A89FBBFE81E804B5BA51 43FB6D455BB23FDF1ED6761AF88BC4DF4B45A091CF3C5B8561593D065A0D7A2B
Windows8.1-KB3177725-x64.msu F42C96AB2BE7858E7CFAF224D8D19245658C3196 A657B20C56600698F46A1976AB39CF87C22798F86B355376FACE9263AF5E5055
Windows6.0-KB3177725-ia64.msu CA0425F54E811F91FF437DC638B6B74B9FE329E2 7DB5E00A5AFB325998FD7CF37D8328F00ECFCC044AC622D10FFC975476EE8455
Windows6.0-KB3177725-x64.msu 3EAF0EEA31AC9908A5201370DEC40D99AC5A4227 93228C7DFC7BECED764A53DB0E7AB5FEDD122B3BC84B7E027EF8B06149AAC084
Windows6.1-KB3177725-ia64.msu 0A6D2CF01995D4EA32B05655C2EBDEAD341C587B 22E9DB29161FA4D9327814B78A04DB3D3FFB5F6C0A2FC4F5AF5EFF33379F7D0F

__

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.Windows 8.1 and Windows Server 2012 R2 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table.
Version Product Milestone Service branch
6.3.960 0.16xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR
6.3.960 0.17xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR
6.3.960 0.18xxx Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 RTM GDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.ptxml| Not applicable| 4,213| 21-Aug-2013| 23:39| Not applicable
    Win32k.sys| 6.3.9600.18405| 3,479,552| 08-Jul-2016| 14:18| x86
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.ptxml| Not applicable| 4,213| 22-Aug-2013| 06:44| Not applicable
    Win32k.sys| 6.3.9600.18405| 4,169,216| 08-Jul-2016| 14:18| x64
    Wow64_win32k.ptxml| Not applicable| 4,213| 21-Aug-2013| 23:39| Not applicable
    Windows Server 2012 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table.

Version Product Milestone Service branch
6.2.920 0.17xxx Windows 8, Windows RT, or Windows Server 2012 RTM GDR
6.2.920 0.21xxx Windows 8, Windows RT, or Windows Server 2012 RTM LDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.ptxml| Not applicable| 4,172| 25-Jul-2012| 20:29| Not applicable
    Win32k.sys| 6.2.9200.21926| 4,047,872| 09-Jul-2016| 06:37| x64
    Wow64_win32k.ptxml| Not applicable| 4,172| 12-Feb-2013| 00:09| Not applicable
    Windows Vista and Windows Server 2008 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table.

Version Product Milestone Service branch
6.0.600 2.19xxx Windows Vista or Windows Server 2008 SP2 GDR
6.0.600 2.23xxx Windows Vista or Windows Server 2008 SP2 LDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.0.6002.19668| 2,072,064| 11-Jul-2016| 05:40| x86
    Win32k.sys| 6.0.6002.23984| 2,080,256| 09-Jul-2016| 14:21| x86
    For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.0.6002.19668| 6,697,472| 11-Jul-2016| 05:43| IA-64
    Win32k.sys| 6.0.6002.23984| 6,707,200| 09-Jul-2016| 14:25| IA-64
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.0.6002.19668| 2,803,200| 11-Jul-2016| 06:01| x64
    Win32k.sys| 6.0.6002.23984| 2,805,760| 09-Jul-2016| 14:41| x64
    Windows 7 and Windows Server 2008 R2 file informationNotes

  • The files that apply to a specific product, milestone (RTM, SPn), and service branch (LDR, GDR) can be identified by examining the file version numbers as shown in the following table.
    Version| Product| Milestone| Service branch
    —|—|—|—
    6.1.760 1.18xxx| Windows 7 or Windows Server 2008 R2| SP1| GDR
    6.1.760 1.23xxx| Windows 7 or Windows Server 2008 R2| SP1| LDR

  • GDR service branches contain only those fixes that are widely released to address widespread, critical issues. LDR service branches contain hotfixes in addition to widely released fixes.

  • The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.
    For all supported x86-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.1.7601.23497| 2,399,232| 08-Jul-2016| 14:53| x86
    For all supported x64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.1.7601.23497| 3,218,944| 08-Jul-2016| 15:01| x64
    For all supported ia64-based versionsFile name| File version| File size| Date| Time| Platform
    —|—|—|—|—|—
    Win32k.sys| 6.1.7601.23497| 7,512,064| 08-Jul-2016| 14:50| IA-64

Related

mskb 4
cve 4
attackerkb 3
prion 4
nessus 1
openvas 1
kaspersky 2
checkpoint_advisories 4
mscve 4
zdt 1
exploitpack 1
zdi 2
symantec 4
cisa_kev 1
exploitdb 1
securelist 1
cisa 1
mskb
mskb
MS16-098: Security update for Windows kernel-mode drivers: August 9, 2016
2016-08-09 00:00:00
Cumulative update for Windows 10 Version 1607: August 9, 2016
2016-08-09 07:00:00
Cumulative update for Windows 10: August 9, 2016
2016-08-09 07:00:00
cve
cve
CVE-2016-3309
2016-08-09 21:59:00
CVE-2016-3310
2016-08-09 21:59:00
CVE-2016-3308
2016-08-09 21:59:00
attackerkb
attackerkb
CVE-2016-3311
2016-08-09 00:00:00
CVE-2016-3309
2016-08-09 00:00:00
CVE-2016-3310
2016-08-09 00:00:00
prion
prion
Privilege escalation
2016-08-09 21:59:00
Privilege escalation
2016-08-09 21:59:00
Privilege escalation
2016-08-09 21:59:00
nessus
nessus
MS16-098: Security Update for Windows Kernel-Mode Drivers (3178466)
2016-08-09 00:00:00
openvas
openvas
Microsoft Kernel-Mode Drivers Multiple Privilege Elevation Vulnerabilities (3178466)
2016-08-10 00:00:00
kaspersky
kaspersky
KLA11908 Multiple vulnerabilities in Microsoft Products (ESU)
2016-08-09 00:00:00
KLA10856 Multiple vulnerabilities in Microsoft Windows
2016-08-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Win32k Elevation of Privilege (MS16-098: CVE-2016-3311)
2016-08-09 00:00:00
Microsoft Win32k Elevation of Privilege (MS16-098: CVE-2016-3310)
2016-08-09 00:00:00
Microsoft Windows Win32k Elevation of Privilege (MS16-098: CVE-2016-3308)
2016-08-09 00:00:00
mscve
mscve
Windows Kernel Elevation of Privilege Vulnerability
2016-08-09 07:00:00
Windows Kernel Elevation of Privilege Vulnerability
2016-08-09 07:00:00
Windows Kernel Elevation of Privilege Vulnerability
2016-08-09 07:00:00
zdt
zdt
Microsoft Windows 10 x64 RS2 - win32kfull!bFill Pool Overflow Exploit
2017-10-06 00:00:00
exploitpack
exploitpack
Microsoft Windows 10 RS2 (x64) - win32kfull!bFill Pool Overflow
2017-10-06 00:00:00
zdi
zdi
Microsoft Windows win32k RGNOBJ Integer Overflow Privilege Escalation Vulnerability
2016-08-09 00:00:00
Microsoft Windows xxxInsertMenuItem Out-Of-Bounds Access Privilege Escalation Vulnerability
2016-08-09 00:00:00
symantec
symantec
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-3310 Local Privilege Escalation Vulnerability
2016-08-09 00:00:00
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-3311 Local Privilege Escalation Vulnerability
2016-08-09 00:00:00
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-3309 Local Privilege Escalation Vulnerability
2016-08-09 00:00:00
cisa_kev
cisa_kev
Microsoft Windows Kernel Privilege Escalation Vulnerability
2022-03-15 00:00:00
exploitdb
exploitdb
Microsoft Windows 10 RS2 (x64) - 'win32kfull!bFill' Pool Overflow
2017-10-06 00:00:00
securelist
securelist
MysterySnail attacks with Windows zero-day
2021-10-12 17:07:08
cisa
cisa
CISA Adds 15 Known Exploited Vulnerability to Catalog
2022-03-15 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

21.8%

JSON
Related for KB3177725
mskb4cve4attackerkb3prion4nessus1openvas1kaspersky2checkpoint_advisories4mscve4zdt1exploitpack1zdi2symantec4cisa_kev1exploitdb1securelist1cisa1