Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB3198234
HistoryNov 08, 2016 - 8:00 a.m.

MS16-135: Description of the security update for Windows kernel-mode drivers: November 8, 2016

2016-11-0808:00:00
Microsoft
support.microsoft.com
24

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.9%

JSON

MS16-135: Description of the security update for Windows kernel-mode drivers: November 8, 2016

Summary

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-135.

More Information

Important

  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see Turn on automatic updating in Control Panel.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

__

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

File Information

__

File hash information

File name SHA1 hash SHA256 hash
Windows6.0-KB3198234-ia64.msu DD7E655150D4F2D441743C212A7FEE1871CCF781 93A226E7C857A8D9C4AD77E3BC0CB82A77B471A90F74E5C1E9CAD462838D5B18
Windows6.0-KB3198234-x64.msu D35CBDB3FEE35903E7EA4901A38F18F9376CD94F 3CBD04470C7CD465405B499C3196E8D8CCA6DF2B1E836F88F7CFA86BA301A256
Windows6.0-KB3198234-x86.msu 965D8E33DA8E948E45E47ECB56837CE2028A8BCB 82F4D545700403418BAD7D1DF062738D23EBA1368C8F6D80B5C544C9C83235BB

__

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.

Windows Vista and Windows Server 2008 file informationNotes The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.

For all supported ia64-based versionsFile name File version File size Date Time Platform
Win32k.sys 6.0.6002.19706 6,697,984 25-Oct-2016 22:52 IA-64
Win32k.sys 6.0.6002.24029 6,707,712 25-Oct-2016 14:29 IA-64
For all supported x64-based versionsFile name File version File size Date Time Platform
Win32k.sys 6.0.6002.19706 2,804,736 25-Oct-2016 23:10 x64
Win32k.sys 6.0.6002.24029 2,807,296 25-Oct-2016 14:48 x64
For all supported x86-based versionsFile name File version File size Date Time Platform
Win32k.sys 6.0.6002.19706 2,073,600 25-Oct-2016 22:47 x86
Win32k.sys 6.0.6002.24029 2,080,768 25-Oct-2016 14:26 x86

Related

openvas 1
nessus 1
mskb 10
threatpost 1
prion 3
checkpoint_advisories 3
symantec 3
zdt 4
myhack58 3
fireeye 4
packetstorm 4
mscve 3
exploitpack 3
thn 2
seebug 1
cve 3
zdi 1
attackerkb 1
cisa_kev 1
exploitdb 3
canvas 1
metasploit 1
githubexploit 1
mmpc 1
securelist 1
googleprojectzero 1
kaspersky 2
wallarmlab 1
qualysblog 1
openvas
openvas
Microsoft Windows Kernel-Mode Drivers Multiple Vulnerabilities (3199135)
2016-11-09 00:00:00
nessus
nessus
MS16-135: Security Update for Windows Kernel-Mode Drivers (3199135)
2016-11-08 00:00:00
mskb
mskb
MS16-135: Security update for Windows kernel-mode drivers: November 8, 2016
2016-11-08 00:00:00
November 2016 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1
2016-11-08 08:00:00
November 2016 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1
2016-11-08 08:00:00
threatpost
threatpost
Microsoft Patches Zero Day Disclosed by Google
2016-11-08 14:57:26
prion
prion
Privilege escalation
2016-11-10 06:59:00
Privilege escalation
2016-11-10 07:00:00
Information disclosure
2016-11-10 06:59:00
checkpoint_advisories
checkpoint_advisories
Microsoft Win32k Elevation of Privilege (MS16-135: CVE-2016-7215)
2016-11-08 00:00:00
Microsoft Windows Win32k Elevation of Privilege (MS16-135: CVE-2016-7255)
2016-11-08 00:00:00
Microsoft Windows Win32k Information Disclosure (MS16-135: CVE-2016-7214)
2016-11-08 00:00:00
symantec
symantec
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-7255 Local Privilege Escalation Vulnerability
2016-11-08 00:00:00
Microsoft Windows Kernel 'Win32k.sys' CVE-2016-7215 Local Privilege Escalation Vulnerability
2016-11-08 00:00:00
Microsoft Windows Kernel CVE-2016-7214 Local Information Disclosure Vulnerability
2016-11-08 00:00:00
zdt
zdt
Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Privilege Escalation (MS16-135) (2)
2017-01-11 00:00:00
Microsoft Windows Kernel - win32k Denial of Service (MS16-135) Exploit
2016-11-10 00:00:00
Microsoft Windows Kernel win32k.sys - 'NtSetWindowLongPtr' Privilege Escalation (MS16-13
2016-11-24 00:00:00
myhack58
myhack58
β€œcerber”blackmailer for CVE-2016-7255 exploit analysis-exploit warning-the black bar safety net
2017-03-23 00:00:00
CVE-2016-7255: analysis of Mining the Windows kernel to mention the right vulnerability-vulnerability warning-the black bar safety net
2016-12-31 00:00:00
For the APT organization to use the EPS vulnerabilities in and mention the right vulnerability analysis-vulnerability warning-the black bar safety net
2017-05-17 00:00:00
fireeye
fireeye
Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations
2017-05-14 18:00:00
Cyber Espionage is Alive and Well: APT32 and the Threat to Global Corporations
2017-05-14 18:00:00
EPS Processing Zero-Days Exploited by Multiple Threat Actors
2017-05-09 13:00:00
packetstorm
packetstorm
Microsoft Windows Kernel win32k.sys NtSetWindowLongPtr Privilege Escalation
2017-01-12 00:00:00
Microsoft Windows kernel win32k Denial Of Service
2016-11-14 00:00:00
Win32k ConsoleControl Offset Confusion
2021-03-19 00:00:00
mscve
mscve
Win32k Elevation of Privilege Vulnerability
2016-11-08 08:00:00
Win32k Elevation of Privilege Vulnerability
2016-11-08 08:00:00
Windows Kernel Information Disclosure Vulnerability
2016-11-08 08:00:00
exploitpack
exploitpack
Microsoft Windows Kernel - win32k.sys NtSetWindowLongPtr Local Privilege Escalation (MS16-135) (2)
2017-01-08 00:00:00
Microsoft Windows Kernel - win32k Denial of Service (MS16-135)
2016-11-09 00:00:00
Microsoft Windows - Win32k Local Privilege Escalation
2019-05-15 00:00:00
thn
thn
Microsoft Patches Windows Zero-Day Flaw Disclosed by Google
2016-11-09 06:12:00
Researchers Fingerprint Exploit Developers Who Help Several Malware Authors
2020-10-02 09:59:00
seebug
seebug
Win32k elevation of privilege vulnerability MS16-135οΌ‰(CVE-2016-7255)
2016-11-10 00:00:00
cve
cve
CVE-2016-7215
2016-11-10 06:59:00
CVE-2016-7255
2016-11-10 07:00:00
CVE-2016-7214
2016-11-10 06:59:00
zdi
zdi
Microsoft Windows win32k.sys Bitmap Null Pointer Dereference Privilege Escalation Vulnerability
2016-11-08 00:00:00
attackerkb
attackerkb
CVE-2016-7255
2016-11-10 00:00:00
cisa_kev
cisa_kev
Microsoft Win32k Privilege Escalation Vulnerability
2021-11-03 00:00:00
exploitdb
exploitdb
Microsoft Windows Kernel - 'win32k.sys NtSetWindowLongPtr' Local Privilege Escalation (MS16-135) (2)
2017-01-08 00:00:00
Microsoft Windows Kernel - 'win32k' Denial of Service (MS16-135)
2016-11-09 00:00:00
Microsoft Windows - 'Win32k' Local Privilege Escalation
2019-05-15 00:00:00
canvas
canvas
Immunity Canvas: MS16_135
2016-11-10 02:00:09
metasploit
metasploit
Win32k ConsoleControl Offset Confusion
2022-02-18 20:23:38
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Microsoft
2020-07-19 08:20:57
mmpc
mmpc
Hardening Windows 10 with zero-day exploit mitigations
2017-01-13 21:28:49
securelist
securelist
The zero-day exploits of Operation WizardOpium
2020-05-28 10:00:09
googleprojectzero
googleprojectzero
TFW you-get-really-excited-you-patch-diffed-a-0day-used-in-the-wild-but-then-find-out-it-is-the-wrong-vuln
2020-04-02 00:00:00
kaspersky
kaspersky
KLA11832 Multiple vulnerabilities in Microsoft Products (ESU)
2016-11-08 00:00:00
KLA10897 Multiple vulnerabilities in Microsoft Windows
2016-11-08 00:00:00
wallarmlab
wallarmlab
Weekly exploit digest – March, 15-21 – VMware View Planner, Win32k ConsoleControl, Microsoft Windows Containers DP API
2021-03-21 13:09:00
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.7 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.006 Low

EPSS

Percentile

78.9%

JSON
Related for KB3198234
openvas1nessus1mskb10threatpost1prion3checkpoint_advisories3symantec3zdt4myhack583fireeye4packetstorm4mscve3exploitpack3thn2seebug1cve3zdi1attackerkb1cisa_kev1exploitdb3canvas1metasploit1githubexploit1mmpc1securelist1googleprojectzero1kaspersky2wallarmlab1qualysblog1