Oval Definition:oval:org.cisecurity:def:1681
Revision Date:2017-02-03Version:12
Title:Windows Kernel Memory Address Information Disclosure Vulnerability - CVE-2016-7258 (MS16-152)
Description:The kernel in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 mishandles page-fault system calls, which allows local users to obtain sensitive information from arbitrary processes via a crafted application, aka "Windows Kernel Memory Address Information Disclosure Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-7258
Platform(s):Microsoft Windows 10
Microsoft Windows Server 2016
Product(s):
Definition Synopsis
  • Microsoft Windows 10 is installed + file version
  • Microsoft Windows 10 is installed
  • Microsoft Windows 10 (32-bit) is installed
  • OR Microsoft Windows 10 (64-bit) is installed
  • AND Check if Win32kfull.sys version is less than 10.0.10240.17202
  • OR Microsoft Windows 10 Version 1511 is installed + file version
  • Microsoft Windows 10 Version 1511 is installed
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND Check if Win32kfull.sys version is less than 10.0.10586.713
  • OR Microsoft Windows 10 Version 1607/Windows Server 2016 is installed + file version
  • Microsoft Windows 10 Version 1607/Windows Server 2016 is installed
  • Microsoft Windows 10 Version 1607 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1607 (64-bit) is installed
  • OR Microsoft Windows Server 2016 is installed
  • AND Check if Win32kfull.sys version is less than 10.0.14393.576
    • BACK