Oval Definition:oval:org.cisecurity:def:942
Revision Date:2016-08-12Version:28
Title:Windows Graphics Component Information Disclosure Vulnerability - CVE-2016-3216 (MS16-074)
Description:GDI32.dll in the Graphics component in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows remote attackers to bypass the ASLR protection mechanism via unspecified vectors, aka "Windows Graphics Component Information Disclosure Vulnerability."
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2016-3216
Platform(s):Microsoft Windows 10
Microsoft Windows 7
Microsoft Windows 8.1
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista
Product(s):
Definition Synopsis
  • Vista/2008 + vulnerable file version
  • Vista/2008
  • Microsoft Windows Vista (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Vista x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed
  • OR Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed
  • AND vulnerable version of Gdi32.dll
  • Check if the version of Gdi32.dll is less than 6.0.6002.19660
  • OR LDR
  • Check if the version of Gdi32.dll is less than 6.0.6002.23975
  • AND Check if version of gdi32.dll is greater than or equal to 6.0.6002.23000
  • OR Win7/R2 + vulnerable file version
  • Win7/R2
  • Microsoft Windows 7 (32-bit) Service Pack 1 is installed
  • OR Microsoft Windows 7 x64 Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed
  • OR Microsoft Windows Server 2008 R2 Itanium-Based Edition Service Pack 1 is installed
  • AND Check if the version of Gdi32.dll is less than 6.1.7601.23457
  • OR 2k12 + vulnerable file version
  • Microsoft Windows Server 2012 is installed
  • AND Check if the version of Gdi32.dll is less than 6.2.9200.21881
  • OR Win8.1/2k12 R2 + vulnerable file version
  • Win8.1/2k12 R2
  • Microsoft Windows Server 2012 R2 is installed
  • OR Microsoft Windows 8.1 is installed
  • AND Check if the version of Gdi32.dll is less than 6.3.9600.18344
  • OR Win10 + vulnerable file version
  • Win10
  • Microsoft Windows 10 (x86) is installed
  • OR Microsoft Windows 10 (x64) is installed
  • AND Check if Gdi32.dll version is less than 10.0.10240.16942
  • OR Win10 1511+ vulnerable file version
  • 1511
  • Microsoft Windows 10 Version 1511 (32-bit) is installed
  • OR Microsoft Windows 10 Version 1511 (64-bit) is installed
  • AND Check if Gdi32.dll version is less than 10.0.10586.420
    • BACK