Rapid7 Vulnerability & Exploit Database

MS16-123: Security Update for Windows Kernel-Mode Drivers (3192892)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-123: Security Update for Windows Kernel-Mode Drivers (3192892)

Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
10/11/2016
Created
07/25/2018
Added
10/11/2016
Modified
11/18/2021

Description

Elevation of privilege vulnerabilities exist when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Solution(s)

  • WINDOWS-HOTFIX-MS16-118-1bf48107-e079-4133-9890-5ef791aa4e62
  • WINDOWS-HOTFIX-MS16-118-4e7c8e1a-dd64-4e39-b519-19a33d996e28
  • WINDOWS-HOTFIX-MS16-118-9ebcd0d6-84aa-48d2-bde3-70b835b128fd
  • WINDOWS-HOTFIX-MS16-118-b0d85b65-fdb5-49b3-8e66-1c3a9be9c543
  • WINDOWS-HOTFIX-MS16-118-d0e44bd1-76fa-411e-8ed0-024899e6c84f
  • WINDOWS-HOTFIX-MS16-118-d2124cb6-5221-4db3-924b-2f7e20d8a477
  • WINDOWS-HOTFIX-MS16-120-442dc6a8-4cc0-421a-b91e-fb304aa12ff6
  • WINDOWS-HOTFIX-MS16-120-45826738-4428-4d7b-bc20-114e64ec7667
  • WINDOWS-HOTFIX-MS16-120-4cd4109b-acf8-4b81-9390-676662386707
  • WINDOWS-HOTFIX-MS16-120-51ae83e7-0a93-42f4-8884-91e24e358cde
  • WINDOWS-HOTFIX-MS16-120-6b19b716-ad07-45a4-b8fa-d429679271bd
  • WINDOWS-HOTFIX-MS16-120-aa4c05e8-14f7-4a38-b0a9-98ec4816b296
  • WINDOWS-HOTFIX-MS16-120-bc4fc430-38b5-4ef5-ba85-fb8254ac9be9
  • WINDOWS-HOTFIX-MS16-120-bc659166-2d66-4ea2-aff3-c904c1c2fe62
  • WINDOWS-HOTFIX-MS16-120-d22a54d1-9d76-48a9-8d16-8de3d8f1a3fb
  • WINDOWS-HOTFIX-MS16-120-d5fd818b-b688-4795-8f8f-84435bbcefb0
  • WINDOWS-HOTFIX-MS16-120-ebfc9751-8279-4037-bf2b-11170befea0d
  • WINDOWS-HOTFIX-MS16-120-f587bb1e-9f59-4ef7-8090-e9362df2ccb8
  • WINDOWS-HOTFIX-MS16-123-1b0f392b-4519-4a24-81ad-a8a02abe9c47
  • WINDOWS-HOTFIX-MS16-123-37297f76-ddfe-4130-9ad9-a2f0125de7dc
  • WINDOWS-HOTFIX-MS16-123-39b0e224-310e-410a-a953-edf8efe3358d
  • WINDOWS-HOTFIX-MS16-123-6d55729a-2aa5-4d8f-ab64-2e5ea466e2e6
  • WINDOWS-HOTFIX-MS16-123-76fb5353-8b05-41a7-be82-e50aec435651
  • WINDOWS-HOTFIX-MS16-123-9d345240-c284-411d-bf07-4fc9944f0abd

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;