Vulnerability Manager Plus

Windows NTLM Elevation of Privilege Vulnerability for Windows Server 2012 (KB3205409) x64 bases systems

Risk Information

Base Score

7.8

MODERATE

Vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

89.296%

CVE Information

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
21845

Patch Description
November, 2016 Security Monthly Quality Rollup for Windows Server 2012 (KB3197877)

References

http://blog.quarkslab.com/cve-2016-7259-an-empty-file-into-the-blue.html
http://packetstormsecurity.com/files/140172/Microsoft-Windows-Type-1-Font-Processing-Privilege-Escalation.html
http://technet.microsoft.com/security/bulletin/MS16-129
http://technet.microsoft.com/security/bulletin/MS16-144
http://technet.microsoft.com/security/bulletin/MS16-145
http://technet.microsoft.com/security/bulletin/MS16-146
http://technet.microsoft.com/security/bulletin/MS16-147
http://technet.microsoft.com/security/bulletin/MS16-149
http://technet.microsoft.com/security/bulletin/MS16-151
http://technet.microsoft.com/security/bulletin/MS16-153
http://www.securityfocus.com/archive/1/archive/1/539919/100/0/threaded
http://www.securityfocus.com/bid/94042
http://www.securityfocus.com/bid/94716
http://www.securityfocus.com/bid/94719
http://www.securityfocus.com/bid/94723
http://www.securityfocus.com/bid/94725
http://www.securityfocus.com/bid/94726
http://www.securityfocus.com/bid/94739
http://www.securityfocus.com/bid/94758
http://www.securityfocus.com/bid/94764
http://www.securityfocus.com/bid/94768
http://www.securityfocus.com/bid/94771
http://www.securityfocus.com/bid/94785
http://www.securityfocus.com/bid/94787
http://www.securitytracker.com/id/1037245
http://www.securitytracker.com/id/1037438
http://www.securitytracker.com/id/1037440
http://www.securitytracker.com/id/1037444
http://www.securitytracker.com/id/1037448
http://www.securitytracker.com/id/1037450
http://www.securitytracker.com/id/1037452
http://www.securitytracker.com/id/1037454
http://www.zerodayinitiative.com/advisories/ZDI-16-593
http://www.zerodayinitiative.com/advisories/ZDI-16-645
https://www.exploit-db.com/exploits/40786/
https://www.exploit-db.com/exploits/40793/
https://www.exploit-db.com/exploits/41615/
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7184
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7218
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7210
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7246
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7199
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3334
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3340
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7223
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7215
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3343
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7221
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7238
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7227
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7255
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7195
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3333
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7247
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3332
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-3342
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-0026
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7224
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2016-7217