| Vulnerability Name: | CVE-2016-0009 (CCN-109284) | ||||||||||||
| Assigned: | 2015-12-04 | ||||||||||||
| Published: | 2016-01-12 | ||||||||||||
| Updated: | 2018-10-30 | ||||||||||||
| Summary: | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Windows 10 Gold and 1511 allow remote attackers to execute arbitrary code via unspecified vectors, aka "Win32k Remote Code Execution Vulnerability." | ||||||||||||
| CVSS v3 Severity: | 8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) 7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)
| ||||||||||||
| CVSS v2 Severity: | 9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
| ||||||||||||
| Vulnerability Type: | CWE-264 | ||||||||||||
| Vulnerability Consequences: | Gain Access | ||||||||||||
| References: | Source: MITRE Type: CNA CVE-2016-0009 Source: CCN Type: Microsoft Security Bulletin MS16-005 Security Update for Windows Kernel-Mode Drivers to Address Remote Code Execution (3124584) Source: CCN Type: Microsoft Security Bulletin MS16-018 Security Update for Windows Kernel-Mode Driver to Address Elevation of Privilege (3136082) Source: CCN Type: Microsoft Security Bulletin MS16-034 Security Update for Windows Kernel-Mode Drivers to Address Elevation of Privilege (3143145) Source: CCN Type: Microsoft Security Bulletin MS16-039 Security Update for Microsoft Graphics Component (3148522) Source: CCN Type: Microsoft Security Bulletin MS16-055 Security Update for Microsoft Graphics Component (3156754) Source: CCN Type: Microsoft Security Bulletin MS16-062 Security Update for Windows Kernel-Mode Drivers (3158222) Source: CCN Type: Microsoft Security Bulletin MS16-073 Security Update for Windows Kernel-Mode Drivers (3164028) Source: CCN Type: Microsoft Security Bulletin MS16-074 Security Update for Microsoft Graphics Component (3164036) Source: CCN Type: Microsoft Security Bulletin MS16-090 Security Update for Windows Kernel-Mode Drivers (3171481) Source: CCN Type: Microsoft Security Bulletin MS16-097 Security Update for Microsoft Graphics Component (3177393) Source: CCN Type: Microsoft Security Bulletin MS16-098 Security Update for Windows Kernel-Mode Drivers (3178466) Source: CCN Type: Microsoft Security Bulletin MS16-106 Security Update for Microsoft Graphics Component (3185848) Source: CCN Type: Microsoft Security Bulletin MS16-120 Security Update for Microsoft Graphics Component (3192884) Source: CCN Type: Microsoft Security Bulletin MS16-123 Security Update for Kernel-Mode Drivers (3192892) Source: CCN Type: Microsoft Security Bulletin MS16-124 Security Update for Windows Registry (3193227) Source: CCN Type: Microsoft Security Bulletin MS16-132 Security Update for Microsoft Graphics Component (3199120) Source: CCN Type: Microsoft Security Bulletin MS16-135 Security Update for Kernel-Mode Drivers (3199135) Source: CCN Type: Microsoft Security Bulletin MS16-139 Security Update for Windows Kernel (3199720) Source: CCN Type: Microsoft Security Bulletin MS16-146 Security Update for Microsoft Graphics Component (3204066) Source: CCN Type: Microsoft Security Bulletin MS16-151 Security Update for Windows Kernel-Mode Drivers (3205651) Source: CCN Type: Microsoft Security Bulletin MS16-155 Security Update for .NET Framework (3205640) Source: CCN Type: Microsoft Security Bulletin MS17-013 Security Update for Microsoft Graphics Component (4013075) Source: CCN Type: BID-79887 Microsoft Windows CVE-2016-0009 Remote Code Execution Vulnerability Source: SECTRACK Type: UNKNOWN 1034654 Source: MS Type: UNKNOWN MS16-005 Source: XF Type: UNKNOWN ms-kmd-cve20160009-code-exec(109284) | ||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||
| BACK | |||||||||||||