==================================================================== CERT-Renater Note d'Information No. 2016/VULN111 _____________________________________________________________________ DATE : 10/03/2016 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Windows versions Vista, Server 2008, 7. ====================================================================== KB3140410 https://technet.microsoft.com/en-us/library/security/MS16-031 _____________________________________________________________________ Microsoft Security Bulletin MS16-031: Security Update for Microsoft Windows to Address Elevation of Privilege (3140410) Bulletin Number: MS16-031 Bulletin Title: Security Update for Microsoft Windows to Address Elevation of Privilege Severity: Important KB Article: 3140410 Version: 1.0 Published Date: March 8, 2016 Executive Summary This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow elevation of privilege if an attacker is able to log on to a target system and run a specially crafted application. This security update is rated Important for all supported editions of Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2. Affected Software Windows Vista Service Pack 2 (3140410) Windows Vista x64 Edition Service Pack 2 (3140410) Windows Server 2008 for 32-bit Systems Service Pack 2 (3140410) Windows Server 2008 for x64-based Systems Service Pack 2 (3140410) Windows Server 2008 for Itanium-based Systems Service Pack 2 (3140410) Windows 7 for 32-bit Systems Service Pack 1 (3140410) Windows 7 for x64-based Systems Service Pack 1 (3140410) Windows Server 2008 R2 for x64-based Systems Service Pack 1 (3140410) Windows Server 2008 R2 for Itanium-based Systems Service Pack 1 (3140410) Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) (3140410) Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) (3140410) Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) (3140410) Vulnerability Information Windows Elevation of Privilege Vulnerability - CVE-2016-0087 An elevation of privilege vulnerability exists when Microsoft Windows fails to properly validate and enforce impersonation levels. An attacker who successfully exploited this vulnerability could bypass impersonation-level security checks and gain elevated privileges on a targeted system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit the vulnerability, an attacker would first have to log on to the system. An attacker could then run a specially crafted application designed to increase privileges. The update addresses the vulnerability by correcting how Windows validates impersonation events. The following table contains links to the standard entry for each vulnerability in the Common Vulnerabilities and Exposures list: Vulnerability Title CVE number Publicly disclosed Exploited Windows Elevation of Privilege Vulnerability CVE-2016-0087 No No ========================================================== Serveur de référence du CERT-Renater https://services.renater.fr/ssi/ ========================================================== + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: cert@support.renater.fr + ==========================================================