Home

CVE-2016-0020

Description

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 mishandle DLL loading, which allows local users to gain privileges via a crafted application, aka MAPI DLL Loading Elevation of Privilege Vulnerability.

Risk Information

Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.693

Associated Vulnerability

VulnerabilityOS Platform
Cumulative Update for Windows 10 for x64-based Systems (KB3124266)Windows
Cumulative Update for Windows 10 Version 1511 (KB3124263)Windows
Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3124263)Windows
Security Update for Windows Vista (KB3121918)Windows
Security Update for Windows Server 2008 (KB3121918)Windows
Security Update for Windows 7 (KB3121918)Windows
Security Update for Windows 8 (KB3121918)Windows
Security Update for Windows 8.1 (KB3121918)Windows
Security Update for Windows Vista for x64-based Systems (KB3121918)Windows
Security Update for Windows Server 2008 x64 Edition (KB3121918)Windows
Security Update for Windows 7 for x64-based Systems (KB3121918)Windows
Security Update for Windows Server 2008 R2 x64 Edition (KB3121918)Windows
Security Update for Windows 8 for x64-based Systems (KB3121918)Windows
Security Update for Windows Server 2012 (KB3121918)Windows
Security Update for Windows 8.1 for x64-based Systems (KB3121918)Windows
Security Update for Windows Server 2012 R2 (KB3121918)Windows
Security Update for Windows Vista (KB3109560)Windows
Security Update for Windows Server 2008 (KB3109560)Windows
Security Update for Windows 7 (KB3109560)Windows
Security Update for Windows 8 (KB3109560)Windows
Security Update for Windows 8.1 (KB3109560)Windows
Security Update for Windows Vista for x64-based Systems (KB3109560)Windows
Security Update for Windows Server 2008 x64 Edition (KB3109560)Windows
Security Update for Windows 7 for x64-based Systems (KB3109560)Windows
Security Update for Windows Server 2008 R2 x64 Edition (KB3109560)Windows
Security Update for Windows 8 for x64-based Systems (KB3109560)Windows
Security Update for Windows Server 2012 (KB3109560)Windows
Security Update for Windows 8.1 for x64-based Systems (KB3109560)Windows
Security Update for Windows Server 2012 R2 (KB3109560)Windows
Security Update for Windows Vista (KB3110329)Windows
Security Update for Windows Vista (KB3110329)Windows
Security Update for Windows 7 (KB3110329)Windows
Security Update for Windows 8 (KB3110329)Windows
Security Update for Windows 8.1 (KB3110329)Windows
Security Update for Windows Vista for x64-based Systems (KB3110329)Windows
Security Update for Windows Server 2008 x64 Edition (KB3110329)Windows
Security Update for Windows 7 for x64-based Systems (KB3110329)Windows
Security Update for Windows Server 2008 R2 x64 Edition (KB3110329)Windows
Security Update for Windows 8 for x64-based Systems (KB3110329)Windows
Security Update for Windows Server 2012 (KB3110329)Windows
Security Update for Windows 8.1 for x64-based Systems (KB3110329)Windows
Security Update for Windows Server 2012 R2 (KB3110329)Windows
Security Update for Windows Vista (KB3108664)Windows
Security Update for Windows Server 2008 (KB3108664)Windows
Security Update for Windows 7 (KB3108664)Windows
Security Update for Windows Vista for x64-based Systems (KB3108664)Windows
Security Update for Windows Server 2008 x64 Edition (KB3108664)Windows
Security Update for Windows 7 for x64-based Systems (KB3108664)Windows
Security Update for Windows Server 2008 R2 x64 Edition (KB3108664)Windows
Security Update for Windows 7 (KB3121461)Windows
Security Update for Windows 8 (KB3121461)Windows
Security Update for Windows 8.1 (KB3121461)Windows
Security Update for Windows 7 for x64-based Systems (KB3121461)Windows
Security Update for Windows 8 for x64-based Systems (KB3121461)Windows
Security Update for Windows 8.1 for x64-based Systems (KB3121461)Windows
Security Update for Windows Server 2012 R2 (KB3121461)Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-19746Cumulative Update for Windows 10 for x64-based Systems (KB3124266)
PATCH-19747Cumulative Update for Windows 10 Version 1511 (KB3124263)
PATCH-19748Cumulative Update for Windows 10 Version 1511 for x64-based Systems (KB3124263)
PATCH-19839Security Update for Windows Vista (KB3121918)
PATCH-19840Security Update for Windows Server 2008 (KB3121918)
PATCH-19841Security Update for Windows 7 (KB3121918)
PATCH-19842Security Update for Windows 8 (KB3121918)
PATCH-19843Security Update for Windows 8.1 (KB3121918)
PATCH-19844Security Update for Windows Vista for x64-based Systems (KB3121918)
PATCH-19845Security Update for Windows Server 2008 x64 Edition (KB3121918)
PATCH-19846Security Update for Windows 7 for x64-based Systems (KB3121918)
PATCH-19847Security Update for Windows Server 2008 R2 x64 Edition (KB3121918)
PATCH-19848Security Update for Windows 8 for x64-based Systems (KB3121918)
PATCH-19849Security Update for Windows Server 2012 (KB3121918)
PATCH-19850Security Update for Windows 8.1 for x64-based Systems (KB3121918)
PATCH-19851Security Update for Windows Server 2012 R2 (KB3121918)
PATCH-19852Security Update for Windows Vista (KB3109560)
PATCH-19853Security Update for Windows Server 2008 (KB3109560)
PATCH-19854Security Update for Windows 7 (KB3109560)
PATCH-19855Security Update for Windows 8 (KB3109560)
PATCH-19856Security Update for Windows 8.1 (KB3109560)
PATCH-19857Security Update for Windows Vista for x64-based Systems (KB3109560)
PATCH-19858Security Update for Windows Server 2008 x64 Edition (KB3109560)
PATCH-19859Security Update for Windows 7 for x64-based Systems (KB3109560)
PATCH-19860Security Update for Windows Server 2008 R2 x64 Edition (KB3109560)
PATCH-19861Security Update for Windows 8 for x64-based Systems (KB3109560)
PATCH-19862Security Update for Windows Server 2012 (KB3109560)
PATCH-19863Security Update for Windows 8.1 for x64-based Systems (KB3109560)
PATCH-19864Security Update for Windows Server 2012 R2 (KB3109560)
PATCH-19865Security Update for Windows Vista (KB3110329)
PATCH-19866Security Update for Windows Vista (KB3110329)
PATCH-19867Security Update for Windows 7 (KB3110329)
PATCH-19868Security Update for Windows 8 (KB3110329)
PATCH-19869Security Update for Windows 8.1 (KB3110329)
PATCH-19870Security Update for Windows Vista for x64-based Systems (KB3110329)
PATCH-19871Security Update for Windows Server 2008 x64 Edition (KB3110329)
PATCH-19872Security Update for Windows 7 for x64-based Systems (KB3110329)
PATCH-19873Security Update for Windows Server 2008 R2 x64 Edition (KB3110329)
PATCH-19874Security Update for Windows 8 for x64-based Systems (KB3110329)
PATCH-19875Security Update for Windows Server 2012 (KB3110329)
PATCH-19876Security Update for Windows 8.1 for x64-based Systems (KB3110329)
PATCH-19877Security Update for Windows Server 2012 R2 (KB3110329)
PATCH-19878Security Update for Windows Vista (KB3108664)
PATCH-19879Security Update for Windows Server 2008 (KB3108664)
PATCH-19880Security Update for Windows 7 (KB3108664)
PATCH-19881Security Update for Windows Vista for x64-based Systems (KB3108664)
PATCH-19882Security Update for Windows Server 2008 x64 Edition (KB3108664)
PATCH-19883Security Update for Windows 7 for x64-based Systems (KB3108664)
PATCH-19884Security Update for Windows Server 2008 R2 x64 Edition (KB3108664)
PATCH-19885Security Update for Windows 7 (KB3121461)
PATCH-19886Security Update for Windows 8 (KB3121461)
PATCH-19887Security Update for Windows 8.1 (KB3121461)
PATCH-19888Security Update for Windows 7 for x64-based Systems (KB3121461)
PATCH-19889Security Update for Windows 8 for x64-based Systems (KB3121461)
PATCH-19890Security Update for Windows 8.1 for x64-based Systems (KB3121461)
PATCH-19891Security Update for Windows Server 2012 R2 (KB3121461)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234