====================================================================

                              CERT-Renater

                  Note d'Information No. 2016/VULN404
_____________________________________________________________________

DATE                : 14/12/2016

HARDWARE PLATFORM(S): /

OPERATING SYSTEM(S): Windows versions 10, Server 2016 running Secure
                                Kernel Mode.

=====================================================================
KB3205642
https://technet.microsoft.com/en-us/library/security/MS16-150
____________________________________________________________________

Microsoft Security Bulletin MS16-150: Security Update for Windows Secure 
Kernel Mode (3205642)

Published Date:	 	December 14, 2016

Version: 		1.0

Executive Summary

This security update resolves a vulnerability in Microsoft Windows. The
vulnerability could allow elevation of privilege if a locally-
authenticated attacker runs a specially crafted application on a
targeted system. An attacker who successfully exploited the
vulnerability could violate virtual trust levels (VTL).

This security update is rated Important for all supported editions of
Windows 10 and Windows Server 2016.


Affected Software	
			
Windows 10
Windows Server 2016


Vulnerability Information

Windows Secure Kernel Mode Elevation of Privilege Vulnerability
CVE-2016-7271

An elevation of privilege vulnerability exists when Windows Secure
Kernel Mode fails to properly handle objects in memory. An attacker who
successfully exploited the vulnerability could violate virtual trust
levels (VTL).

A locally-authenticated attacker could attempt to exploit the
vulnerability by running a specially crafted application on a
targeted system.

The security update addresses the vulnerability by correcting how
Windows handles objects in memory to properly enforce VLTs

The following table contains links to the standard entry for each
vulnerability in the Common Vulnerabilities and Exposures list:

Vulnerability title   CVE number   Publicly disclosed   Exploited
Secure Kernel Mode Elevation
of Privilege Vulnerability	CVE-2016-7271	No	No

==========================================================
Serveur de référence du CERT-Renater
https://services.renater.fr/ssi/
==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================