Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
mskbMicrosoftKB3203859
HistoryNov 08, 2016 - 8:00 a.m.

MS16-132: Description of the security update for Microsoft graphics component: November 8, 2016

2016-11-0808:00:00
Microsoft
support.microsoft.com
12

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.448 Medium

EPSS

Percentile

97.3%

JSON

MS16-132: Description of the security update for Microsoft graphics component: November 8, 2016

Summary

This security update resolves vulnerabilities in Microsoft Windows. The most severe of the vulnerabilities could allow a remote code execution. The vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.

To learn more about the vulnerability, see Microsoft Security Bulletin MS16-132.

More Information

Important

  • All future security and non-security updates for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 require update 2919355 to be installed. We recommend that you install update 2919355 on your Windows RT 8.1-based, Windows 8.1-based, or Windows Server 2012 R2-based computer so that you receive future updates.
  • If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you require before you install this update. For more information, see Add language packs to Windows.

How to obtain and install the update

Method 1: Windows Update

This update is available through Windows Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to turn on automatic updating, see
Get security updates automatically.

Note For Windows RT 8.1, this update is available through Windows Update only.

Method 2: Microsoft Update Catalog

To get the stand-alone package for this update, go to the Microsoft Update Catalog website.

More Information

__

How to obtain help and support for this security update

Help for installing updates: Support for Microsoft Update

Security solutions for IT professionals: TechNet Security Troubleshooting and Support

Help for protecting your Windows-based computer from viruses and malware: Virus Solution and Security Center

Local support according to your country: International Support

File Information

__

File hash information

File name SHA1 hash SHA256 hash
Windows8.1-KB3203859-x64.msu 71356208B2E0C2A8BEE6CDEB9C4CD1D4B8E7C59A C294F1CE68346410586F4A94B5A3E497244DA6B3641C97160B744A564E492C8E
Windows8.1-KB3203859-x86.msu EC652B4608D6DD5D1A4D62DC6E39B4C193195B2C 246C836440BC5FF52CFC424D4AB8C36A030C43B06787AECEE8ED325C18594FF5
Windows8-RT-KB3203859-x64.msu 64D02C3C4330758649DBCB3585E65C611FBF1FFA A08696AEED1A0A9B5D4063A7223C83D65F79E731813C6BF7B970CF8FD3493317
Windows6.1-KB3203859-x64.msu BB7029EF4BC918FD3BE05EBFF444E3812587E7B9 7FB21D7D81CBB9D98E6EA4A93B5C609308A79F0A1A107AB968F941E08075FD29
Windows6.1-KB3203859-ia64.msu 1ED59EC05A703EFD3E3D812AB8E85FE221EBE3E9 8844A116D70DE23EC2D5C4307E93C8F27729C21576F1C706F08ADB9D02F3CEB8
Windows6.1-KB3203859-x86.msu 2BFD5DA026559E9DD248340E5782ECEFB11A1151 DC149A3B5F0739D09837A567C6E10E2B6BE11802016DAE45C76622D2161714BF
Windows6.0-KB3203859-ia64.msu E3CE8024B6BC6214F005BB10522D054E80694583 92C23A4CCDFFD0EAE47E2DB9543D890D26973CDA8EF325E66FD93DFFCB8694DA
Windows6.0-KB3203859-x64.msu A5276A41E72F8888572D5459C6A757FE28844706 56E2A4D9AC21A245BD1B829A8200FE6EA87C416389D58478033CBD19607E1CAE
Windows6.0-KB3203859-x86.msu 722738430267470C95ED36E962E799AF92695B0E 0495801BE0406F1B31CDCCFED5995A63E8727AC600C45ADF47FDAD910AF5F1F1

__

File information

The English (United States) version of this software update installs files that have the attributes that are listed in the following tables.Windows 8.1 and Windows Server 2012 R2 file informationNotes: The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.For all supported x64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 372,568 02-Nov-2016 20:48 x64
Atmlib.dll 5.1.2.250 44,032 02-Nov-2016 14:03 x64
Dciman32.dll 6.3.9600.17415 14,848 29-Oct-2014 02:44 x64
Fontsub.dll 6.3.9600.17415 96,256 29-Oct-2014 02:44 x64
Lpk.dll 6.3.9600.17415 3,072 29-Oct-2014 02:49 x64
Atmfd.dll 5.1.2.250 315,224 02-Nov-2016 20:48 x86
Atmlib.dll 5.1.2.250 35,840 02-Nov-2016 14:00 x86
Dciman32.dll 6.3.9600.17415 11,776 29-Oct-2014 02:00 x86
Fontsub.dll 6.3.9600.17415 77,824 29-Oct-2014 02:00 x86
Lpk.dll 6.3.9600.17415 3,072 29-Oct-2014 02:04 x86
For all supported x86-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 315,224 02-Nov-2016 20:48 x86
Atmlib.dll 5.1.2.250 35,840 02-Nov-2016 14:00 x86
Dciman32.dll 6.3.9600.17415 11,776 29-Oct-2014 02:00 x86
Fontsub.dll 6.3.9600.17415 77,824 29-Oct-2014 02:00 x86
Lpk.dll 6.3.9600.17415 3,072 29-Oct-2014 02:04 x86
Windows Server 2012 file informationNotes: The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.For all supported x64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 378,720 02-Nov-2016 20:44 x64
Atmlib.dll 5.1.2.250 46,080 02-Nov-2016 18:11 x64
Dciman32.dll 6.2.9200.16384 14,336 26-Jul-2012 03:05 x64
Fontsub.dll 6.2.9200.16384 96,256 26-Jul-2012 03:05 x64
Lpk.dll 6.2.9200.16384 3,072 26-Jul-2012 02:33 x64
Atmfd.dll 5.1.2.250 315,744 02-Nov-2016 19:42 x86
Atmlib.dll 5.1.2.250 35,328 02-Nov-2016 19:07 x86
Dciman32.dll 6.2.9200.16384 10,752 26-Jul-2012 03:18 x86
Fontsub.dll 6.2.9200.16384 75,776 26-Jul-2012 03:18 x86
Lpk.dll 6.2.9200.16384 3,072 26-Jul-2012 02:41 x86
Windows 7 and Windows Server 2008 R2 file informationNotes: The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.For all supported x64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 382,696 02-Nov-2016 15:36 x64
Atmlib.dll 5.1.2.250 46,080 02-Nov-2016 15:32 x64
Dciman32.dll 6.1.7601.23587 14,336 02-Nov-2016 15:32 x64
Fontsub.dll 6.1.7601.23587 100,864 02-Nov-2016 15:32 x64
Lpk.dll 6.1.7601.23587 41,472 02-Nov-2016 15:32 x64
Atmfd.dll 5.1.2.250 308,456 02-Nov-2016 15:22 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 14:53 x86
Dciman32.dll 6.1.7601.23587 10,240 02-Nov-2016 15:16 x86
Fontsub.dll 6.1.7601.23587 70,656 02-Nov-2016 15:16 x86
Lpk.dll 6.1.7601.23587 25,600 02-Nov-2016 15:16 x86
For all supported ia64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 793,320 02-Nov-2016 15:16 IA-64
Atmlib.dll 5.1.2.250 91,648 02-Nov-2016 15:10 IA-64
Dciman32.dll 6.1.7601.23587 32,768 02-Nov-2016 15:10 IA-64
Fontsub.dll 6.1.7601.23587 197,632 02-Nov-2016 15:11 IA-64
Lpk.dll 6.1.7601.23587 73,216 02-Nov-2016 15:11 IA-64
Atmfd.dll 5.1.2.250 308,456 02-Nov-2016 15:22 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 14:53 x86
Dciman32.dll 6.1.7601.23587 10,240 02-Nov-2016 15:16 x86
Fontsub.dll 6.1.7601.23587 70,656 02-Nov-2016 15:16 x86
Lpk.dll 6.1.7601.23587 25,600 02-Nov-2016 15:16 x86
For all supported x86-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 308,456 02-Nov-2016 15:22 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 14:53 x86
Dciman32.dll 6.1.7601.23587 10,240 02-Nov-2016 15:16 x86
Fontsub.dll 6.1.7601.23587 70,656 02-Nov-2016 15:16 x86
Lpk.dll 6.1.7601.23587 26,112 02-Nov-2016 15:16 x86
Windows Vista and Windows Server 2008 file informationNotes: The MANIFEST files (.manifest) and MUM files (.mum) that are installed are not listed.For all supported ia64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 793,320 02-Nov-2016 15:48 IA-64
Atmlib.dll 5.1.2.250 92,160 02-Nov-2016 15:40 IA-64
Dciman32.dll 6.0.6001.18000 29,184 19-Jan-2008 08:26 IA-64
Fontsub.dll 6.0.6002.18124 196,096 19-Oct-2009 13:31 IA-64
Lpk.dll 6.0.6001.18000 68,608 19-Jan-2008 08:28 IA-64
Atmfd.dll 5.1.2.250 793,320 02-Nov-2016 15:19 IA-64
Atmlib.dll 5.1.2.250 92,160 02-Nov-2016 15:11 IA-64
Dciman32.dll 6.0.6002.24032 29,184 02-Nov-2016 15:11 IA-64
Fontsub.dll 6.0.6002.24032 196,096 02-Nov-2016 15:12 IA-64
Lpk.dll 6.0.6002.24032 68,608 02-Nov-2016 15:12 IA-64
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 16:06 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:59 x86
Dciman32.dll 6.0.6002.18051 10,240 15-Jun-2009 14:51 x86
Fontsub.dll 6.0.6002.18272 72,704 16-Jun-2010 15:30 x86
Lpk.dll 6.0.6002.18005 23,552 11-Apr-2009 06:26 x86
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 15:23 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:15 x86
Dciman32.dll 6.0.6002.24032 10,240 02-Nov-2016 15:15 x86
Fontsub.dll 6.0.6002.24032 72,704 02-Nov-2016 15:15 x86
Lpk.dll 6.0.6002.24032 23,552 02-Nov-2016 15:17 x86
For all supported x64-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 383,208 02-Nov-2016 16:16 x64
Atmlib.dll 5.1.2.250 48,128 02-Nov-2016 16:09 x64
Dciman32.dll 6.0.6002.18051 14,336 15-Jun-2009 15:10 x64
Fontsub.dll 6.0.6002.18272 96,256 16-Jun-2010 16:30 x64
Lpk.dll 6.0.6001.18000 32,768 19-Jan-2008 08:02 x64
Atmfd.dll 5.1.2.250 383,208 02-Nov-2016 15:46 x64
Atmlib.dll 5.1.2.250 48,128 02-Nov-2016 15:38 x64
Dciman32.dll 6.0.6002.24032 14,336 02-Nov-2016 15:38 x64
Fontsub.dll 6.0.6002.24032 96,256 02-Nov-2016 15:38 x64
Lpk.dll 6.0.6002.24032 32,768 02-Nov-2016 15:39 x64
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 16:06 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:59 x86
Dciman32.dll 6.0.6002.18051 10,240 15-Jun-2009 14:51 x86
Fontsub.dll 6.0.6002.18272 72,704 16-Jun-2010 15:30 x86
Lpk.dll 6.0.6002.18005 23,552 11-Apr-2009 06:26 x86
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 15:23 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:15 x86
Dciman32.dll 6.0.6002.24032 10,240 02-Nov-2016 15:15 x86
Fontsub.dll 6.0.6002.24032 72,704 02-Nov-2016 15:15 x86
Lpk.dll 6.0.6002.24032 23,552 02-Nov-2016 15:17 x86
For all supported x86-based versionsFile name File version File size Date Time Platform
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 16:06 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:59 x86
Dciman32.dll 6.0.6002.18051 10,240 15-Jun-2009 14:51 x86
Fontsub.dll 6.0.6002.18272 72,704 16-Jun-2010 15:30 x86
Lpk.dll 6.0.6002.18051 23,552 15-Jun-2009 14:52 x86
Atmfd.dll 5.1.2.250 306,408 02-Nov-2016 15:23 x86
Atmlib.dll 5.1.2.250 34,304 02-Nov-2016 15:15 x86
Dciman32.dll 6.0.6002.24032 10,240 02-Nov-2016 15:15 x86
Fontsub.dll 6.0.6002.24032 72,704 02-Nov-2016 15:15 x86
Lpk.dll 6.0.6002.24032 23,552 02-Nov-2016 15:16 x86

Related

openvas 1
nessus 1
mskb 10
checkpoint_advisories 2
prion 2
cve 2
cisa_kev 1
symantec 2
mscve 2
attackerkb 1
mmpc 1
kaspersky 2
openvas
openvas
Microsoft Graphics Component Multiple Vulnerabilities (3199120)
2016-11-09 00:00:00
nessus
nessus
MS16-132: Security Update for Microsoft Graphics Component (3199120)
2016-11-08 00:00:00
mskb
mskb
MS16-132: Security update for Microsoft graphics component: November 8, 2016
2016-11-08 00:00:00
November 2016 Security Only Quality Update for Windows 7 SP1 and Windows Server 2008 R2 SP1
2016-11-08 08:00:00
November 2016 Security Monthly Quality Rollup for Windows 7 SP1 and Windows Server 2008 R2 SP1
2016-11-08 08:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows Open Type Font Remote Code Execution (MS16-132: CVE-2016-7256)
2016-11-08 00:00:00
Microsoft Windows Open Type Font Information Disclosure (MS16-132: CVE-2016-7210)
2016-11-08 00:00:00
prion
prion
Remote code execution
2016-11-10 07:00:00
Information disclosure
2016-11-10 06:59:00
cve
cve
CVE-2016-7256
2016-11-10 07:00:00
CVE-2016-7210
2016-11-10 06:59:00
cisa_kev
cisa_kev
Microsoft Windows Open Type Font Remote Code Execution Vulnerability
2022-05-25 00:00:00
symantec
symantec
Microsoft Windows Open Type Font CVE-2016-7256 Remote Code Execution Vulnerability
2016-11-08 00:00:00
Microsoft Windows Open Type Font CVE-2016-7210 Information Disclosure Vulnerability
2016-11-08 00:00:00
mscve
mscve
Microsoft Graphics Remote Code Execution Vulnerability
2016-11-08 08:00:00
Open Type Font Information Disclosure Vulnerability
2016-11-08 08:00:00
attackerkb
attackerkb
CVE-2016-7256
2016-11-10 00:00:00
mmpc
mmpc
Hardening Windows 10 with zero-day exploit mitigations
2017-01-13 21:28:49
kaspersky
kaspersky
KLA11832 Multiple vulnerabilities in Microsoft Products (ESU)
2016-11-08 00:00:00
KLA10897 Multiple vulnerabilities in Microsoft Windows
2016-11-08 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

8 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.448 Medium

EPSS

Percentile

97.3%

JSON
Related for KB3203859
openvas1nessus1mskb10checkpoint_advisories2prion2cve2cisa_kev1symantec2mscve2attackerkb1mmpc1kaspersky2