CVE-2016-0167

CVSS 7.8 HIGHEPSS 5.7%● KEV

In short

A vulnerability in Windows kernel-mode driver allows a local user to run a specially crafted application to gain administrative privileges on their computer. This is a serious flaw because it lets someone with regular access escalate to full system control.

Technical detail

Local privilege escalation vulnerability in the Win32k kernel-mode driver affecting multiple Windows versions. An authenticated local attacker can exploit this via a malicious application to elevate privileges to SYSTEM level without requiring special preconditions beyond local access.

Summary generated and translated by AI from the official description.

The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0143 and CVE-2016-0165.

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-039 https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-0167 http://www.securitytracker.com/id/1035529 http://www.securitytracker.com/id/1035532