MS16-101: Security Update for Windows Authentication Methods (3178465)
Description
An elevation of privilege vulnerability exists when Windows Netlogon improperly establishes a secure communications channel to a domain controller. An attacker who successfully exploited the vulnerability could run a specially crafted application on a domain-joined system. To exploit the vulnerability, an attacker would require access to a domain-joined machine that points to a domain controller running either Windows Server 2012 or Windows Server 2012 R2. The update addresses the vulnerability by modifying how Netlogon handles the establishment of secure channels.
Solution(s)
- WINDOWS-HOTFIX-MS16-101-054c54d3-53bb-4cb9-aeb3-8cbd510e9444
- WINDOWS-HOTFIX-MS16-101-0b92cc6e-cab4-47d8-a4d8-0b3c52b88e0e
- WINDOWS-HOTFIX-MS16-101-3dd03bd5-6e7e-4042-b71e-6b22742adaa6
- WINDOWS-HOTFIX-MS16-101-4952a29c-d917-4a8b-bf7b-5de356c85388
- WINDOWS-HOTFIX-MS16-101-4975debd-5629-4df1-b2f8-28af4d17c8b5
- WINDOWS-HOTFIX-MS16-101-4ffffddf-0257-4e43-9f81-3f5a3c5688a3
- WINDOWS-HOTFIX-MS16-101-52adbf30-6541-441e-8608-09ae5addce92
- WINDOWS-HOTFIX-MS16-101-5d0f5a15-1d83-4155-b1d5-bffc63fb26ab
- WINDOWS-HOTFIX-MS16-101-773a45aa-f326-419b-ae03-85fb765e9d31
- WINDOWS-HOTFIX-MS16-101-803a1f62-ef6b-4724-9bd0-f2f24c30ff04
- WINDOWS-HOTFIX-MS16-101-90459d73-6b3f-488b-adb5-13f8605acb75
- WINDOWS-HOTFIX-MS16-101-99dedec5-d636-4d16-8102-6039c505ad49
- WINDOWS-HOTFIX-MS16-101-9b5ee182-9dda-4e40-a760-926bfbbe32d0
- WINDOWS-HOTFIX-MS16-101-9e1f0138-63e6-4176-9407-53beeea3d580
- WINDOWS-HOTFIX-MS16-101-a8e1014f-01d4-4712-9d94-aa8f6f04c814
- WINDOWS-HOTFIX-MS16-101-a9665486-69b1-4d91-b037-98f33b49f443
- WINDOWS-HOTFIX-MS16-101-b20e8b9f-e63e-4e18-a26f-49d6718f36bb
- WINDOWS-HOTFIX-MS16-101-b2ccdfab-91c3-41f2-9247-d35f61b6eaa8
- WINDOWS-HOTFIX-MS16-101-c9a4013b-fc61-4ac2-a9fd-f6c47faf9e4e
- WINDOWS-HOTFIX-MS16-101-f77e3686-2b8e-4282-b231-b08e49ddddee
- WINDOWS-HOTFIX-MS16-118-1bf48107-e079-4133-9890-5ef791aa4e62
- WINDOWS-HOTFIX-MS16-118-4e7c8e1a-dd64-4e39-b519-19a33d996e28
- WINDOWS-HOTFIX-MS16-118-9ebcd0d6-84aa-48d2-bde3-70b835b128fd
- WINDOWS-HOTFIX-MS16-118-b0d85b65-fdb5-49b3-8e66-1c3a9be9c543
- WINDOWS-HOTFIX-MS16-118-d0e44bd1-76fa-411e-8ed0-024899e6c84f
- WINDOWS-HOTFIX-MS16-118-d2124cb6-5221-4db3-924b-2f7e20d8a477
- WINDOWS-HOTFIX-MS16-120-442dc6a8-4cc0-421a-b91e-fb304aa12ff6
- WINDOWS-HOTFIX-MS16-120-45826738-4428-4d7b-bc20-114e64ec7667
- WINDOWS-HOTFIX-MS16-120-4cd4109b-acf8-4b81-9390-676662386707
- WINDOWS-HOTFIX-MS16-120-51ae83e7-0a93-42f4-8884-91e24e358cde
- WINDOWS-HOTFIX-MS16-120-6b19b716-ad07-45a4-b8fa-d429679271bd
- WINDOWS-HOTFIX-MS16-120-aa4c05e8-14f7-4a38-b0a9-98ec4816b296
- WINDOWS-HOTFIX-MS16-120-bc4fc430-38b5-4ef5-ba85-fb8254ac9be9
- WINDOWS-HOTFIX-MS16-120-bc659166-2d66-4ea2-aff3-c904c1c2fe62
- WINDOWS-HOTFIX-MS16-120-d22a54d1-9d76-48a9-8d16-8de3d8f1a3fb
- WINDOWS-HOTFIX-MS16-120-d5fd818b-b688-4795-8f8f-84435bbcefb0
- WINDOWS-HOTFIX-MS16-120-ebfc9751-8279-4037-bf2b-11170befea0d
- WINDOWS-HOTFIX-MS16-120-f587bb1e-9f59-4ef7-8090-e9362df2ccb8
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center