Oval Definition:oval:org.cisecurity:def:1456
Revision Date:2016-12-23Version:17
Title:Windows Common Log File System Driver Elevation of Privilege Vulnerability – CVE-2016-3343 (MS16-134)
Description:The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, and 1607, and Windows Server 2016 allows local users to gain privileges via a crafted application, aka "Windows Common Log File System Driver Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0026, CVE-2016-3332, CVE-2016-3333, CVE-2016-3334, CVE-2016-3335, CVE-2016-3338, CVE-2016-3340, CVE-2016-3342, and CVE-2016-7184.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-3343
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016
Microsoft Windows Vista
Product(s):
Definition Synopsis
  • Vista/2008 + file version
  • Vista/2008
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 6.0.6002.19703
  • OR LDR
  • Check if the version of Clfs.sys is less than 6.0.6002.24026
  • AND Check if the version of Clfs.sys is greater than or equal 6.0.6002.24000
  • OR Win7/2008 R2 + file version
  • Win7/2008 R2
  • Microsoft Windows 7 (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows 7 x64 Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition Service Pack 1 is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 6.1.7601.23572
  • OR 2012 + file version
  • Microsoft Windows Server 2012 is installed
  • AND Check if the version of Clfs.sys is less than 6.2.9200.22007
  • OR Win8.1/2012 R2 + file version
  • Win8.1/2012 R2
  • Microsoft Windows 8.1 (x86) is installed
  • OR Microsoft Windows 8.1 (x64) is installed
  • OR Microsoft Windows Server 2012 R2 is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 6.3.9600.18514
  • OR Win10 + file version
  • Win10
  • Microsoft Windows 10 (x86) is installed
  • OR Microsoft Windows 10 (x64) is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 10.0.10240.17184
  • OR 1511 + file version
  • Win10
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 10.0.10586.672
  • OR 1607/2016 + file version
  • 1607/2016
  • Microsoft Windows 10 Version 1607 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1607 (64-bit) is installed
  • OR Microsoft Windows Server 2016 is installed
  • AND file version
  • Check if the version of Clfs.sys is less than 10.0.14393.447
  • BACK