Windows 10 1607 Security Vulnerabilities

CVE-2020-16920

<p>An elevation of privilege vulnerability exists when the Windows Application Compatibility Client Library improperly handles registry operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.</p><p>To exploit the vulnerability, an attacker would first n...

CVE-2020-16922

<p>A spoofing vulnerability exists when Windows incorrectly validates file signatures. An attacker who successfully exploited this vulnerability could bypass security features and load improperly signed files.</p><p>In an attack scenario, an attacker could bypass security features intended to preve...

CVE-2020-16923

<p>A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system.</p><p>To exploit the vulnerability, a user would have to open a specially...

CVE-2020-16924

<p>A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system.</p><p>An attacker could exploit this vulnerability by enticing a vict...

CVE-2020-16927

<p>A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests. An attacker who successfully exploited this vulnerability could cause the RDP service on the target system to stop responding.<...

CVE-2020-16935

<p>An elevation of privilege vulnerability exists when Windows improperly handles COM object creation. An attacker who successfully exploited the vulnerability could run arbitrary code with elevated privileges.</p><p>To exploit this vulnerability, an attacker would first have to log on to the syste...

CVE-2020-16936

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16939

<p>An elevation of privilege vulnerability exists when Group Policy improperly checks access. An attacker who successfully exploited this vulnerability could run processes in an elevated context.</p><p>To exploit the vulnerability, an attacker would first have to log on to the system, and then run ...

CVE-2020-16940

<p>An elevation of privilege vulnerability exists when the Windows User Profile Service (ProfSvc) improperly handles junction points. An attacker who successfully exploited this vulnerability could delete files and folders in an elevated context.</p><p>To exploit this vulnerability, an attacker wou...

CVE-2020-16958

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16959

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16960

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16961

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16962

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16963

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16964

Windows Backup Engine Elevation of Privilege Vulnerability

CVE-2020-16967

<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user ri...

CVE-2020-16968

<p>A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user ri...

CVE-2020-16972

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16973

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16974

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16975

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16976

<p>An elevation of privilege vulnerability exists when the Windows Backup Service improperly handles file operations.</p><p>To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privi...

CVE-2020-16997

Remote Desktop Protocol Server Information Disclosure Vulnerability

CVE-2020-16998

DirectX Elevation of Privilege Vulnerability

CVE-2020-16999

Windows WalletService Information Disclosure Vulnerability

CVE-2020-17000

Remote Desktop Protocol Client Information Disclosure Vulnerability

CVE-2020-17001

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2020-17004

Windows Graphics Component Information Disclosure Vulnerability

CVE-2020-17007

Windows Error Reporting Elevation of Privilege Vulnerability

CVE-2020-17011

Windows Port Class Library Elevation of Privilege Vulnerability

CVE-2020-17014

Windows Print Spooler Elevation of Privilege Vulnerability

CVE-2020-17024

Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability

CVE-2020-17025

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17026

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17027

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17028

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17029

Windows Canonical Display Driver Information Disclosure Vulnerability

CVE-2020-17031

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17032

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17033

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17034

Windows Remote Access Elevation of Privilege Vulnerability

CVE-2020-17035

Windows Kernel Elevation of Privilege Vulnerability

CVE-2020-17036

Windows Function Discovery SSDP Provider Information Disclosure Vulnerability

CVE-2020-17037

Windows WalletService Elevation of Privilege Vulnerability

CVE-2020-17038

Win32k Elevation of Privilege Vulnerability

CVE-2020-17040

Windows Hyper-V Security Feature Bypass Vulnerability

CVE-2020-17041

Windows Print Configuration Elevation of Privilege Vulnerability

CVE-2020-17042

Windows Print Spooler Remote Code Execution Vulnerability

CVE-2020-17043

Windows Remote Access Elevation of Privilege Vulnerability