MS16-100: Security Update for Secure Boot (3179577)
Description
A security feature bypass vulnerability exists when Windows Secure Boot improperly loads a boot manager that is affected by the vulnerability. An attacker who successfully exploited this vulnerability could disable code integrity checks, allowing test-signed executables and drivers to be loaded onto a target device. Furthermore, the attacker could bypass Secure Boot Integrity Validation for BitLocker and Device Encryption security features.
Solution(s)
- WINDOWS-HOTFIX-MS16-100-311160f6-58a8-41fc-91a9-c0989daa4a87
- WINDOWS-HOTFIX-MS16-100-87117f7f-5d06-4954-92b2-53db7cedc52f
- WINDOWS-HOTFIX-MS16-100-9e48f3ab-0966-493b-b892-514f72a07061
- WINDOWS-HOTFIX-MS16-100-b35229e8-9fef-4fac-bb33-1350d6ed13fb
- WINDOWS-HOTFIX-MS16-100-ba62a882-fc4d-4c3c-9af4-f622e1539f19
- WINDOWS-HOTFIX-MS16-100-c071152f-3697-44f4-b77c-bf07519dd63e
- WINDOWS-HOTFIX-MS16-100-c537d1ca-37fc-4c39-a1b1-eadd949f9559
- WINDOWS-HOTFIX-MS16-100-cdde339c-ebdb-4a16-add4-fb196a5053a8
- WINDOWS-HOTFIX-MS16-100-de9f7f35-362f-4a75-af02-b72a4e262bbc
- WINDOWS-HOTFIX-MS16-100-f694802e-9115-4340-ab20-6194b1e2560d
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center