Oval Definition:oval:org.cisecurity:def:1653
Revision Date:2017-01-27Version:12
Title:Secure Kernel Mode Elevation of Privilege Vulnerability - CVE-2016-7271 (MS16-150)
Description:The Secure Kernel Mode implementation in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to bypass the virtual trust level (VTL) protection mechanism via a crafted application, aka "Secure Kernel Mode Elevation of Privilege Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):MS16-150
CVE-2016-7271
Platform(s):Microsoft Windows 10
Microsoft Windows Server 2016
Product(s):
Definition Synopsis
  • Win10 + file version
  • Win10
  • Microsoft Windows 10 (x86) is installed
  • OR Microsoft Windows 10 (x64) is installed
  • AND file version
  • Check if the version of Ntoskrnl.exel is less than 10.0.10240.17202
  • OR 1511 + file version
  • Win10
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND file version
  • Check if the version of Ntoskrnl.exel is less than 10.0.10586.672
  • OR 1607/2016 + file version
  • 1607/2016
  • Microsoft Windows 10 Version 1607 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1607 (64-bit) is installed
  • OR Microsoft Windows Server 2016 is installed
  • AND file version
  • Check if the version of Ntoskrnl.exel is less than 10.0.14393.576
    • BACK