Rapid7 Vulnerability & Exploit Database

MS16-098: Security Update for Windows Kernel-Mode Drivers (3178466)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-098: Security Update for Windows Kernel-Mode Drivers (3178466)

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
08/09/2016
Created
07/25/2018
Added
08/09/2016
Modified
05/03/2022

Description

Multiple elevation of privilege vulnerabilities exist when the Windows kernel-mode driver fails to properly handle objects in memory. An attacker who successfully exploited these vulnerabilities could run arbitrary code in kernel mode. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Solution(s)

  • WINDOWS-HOTFIX-MS16-095-08f42077-4a2f-4c0e-b340-9675f8ab5a6b
  • WINDOWS-HOTFIX-MS16-095-1d3328b4-dfa2-458b-b5f5-4c7ad45965e7
  • WINDOWS-HOTFIX-MS16-095-4d52d21e-e4a1-4043-bcda-69a696b2b257
  • WINDOWS-HOTFIX-MS16-095-57ee4145-570f-4d7a-bf61-361695d14534
  • WINDOWS-HOTFIX-MS16-095-7eab7ce1-623b-4135-afdd-ce45f1da11d2
  • WINDOWS-HOTFIX-MS16-095-9df36889-a57a-4b96-b461-8c4503c6aacc
  • WINDOWS-HOTFIX-MS16-098-207a155c-b7cf-478a-b618-3809e9133059
  • WINDOWS-HOTFIX-MS16-098-2f177b1e-c252-4f0a-8d31-e872695305aa
  • WINDOWS-HOTFIX-MS16-098-408d4d2d-0f62-4a2a-bfc8-9352abcf2001
  • WINDOWS-HOTFIX-MS16-098-551e8efa-06c5-4e84-bc90-ad1b1e2884e8
  • WINDOWS-HOTFIX-MS16-098-59ef7f45-dea1-45a7-a7c1-3954c537f429
  • WINDOWS-HOTFIX-MS16-098-65dd9898-4314-4a6c-81c6-bd941be63001
  • WINDOWS-HOTFIX-MS16-098-6d33d503-dc0f-43f7-8504-13644ff8c818
  • WINDOWS-HOTFIX-MS16-098-6eddfebb-9164-4a7e-9aad-01592514b6dc
  • WINDOWS-HOTFIX-MS16-098-7cee97c6-2388-4041-828b-2609e31a0fed
  • WINDOWS-HOTFIX-MS16-098-8022fb7c-a1c6-46e4-9821-45c67f1c5da7
  • WINDOWS-HOTFIX-MS16-098-86769db9-9dfe-4d2c-a138-7388887e10dc
  • WINDOWS-HOTFIX-MS16-098-8e30de1c-4d1a-43b6-be63-bf131800fac3
  • WINDOWS-HOTFIX-MS16-098-af2af96d-3d4e-43aa-90e7-d57d404d4f38
  • WINDOWS-HOTFIX-MS16-098-c8bf84dd-5350-4745-95fd-185ee96f9c8c
  • WINDOWS-HOTFIX-MS16-098-c921dd89-e341-41c3-bce4-6a22b658fb9b
  • WINDOWS-HOTFIX-MS16-098-e29a4cf9-d131-41ee-b716-e1690e4df47e
  • WINDOWS-HOTFIX-MS16-098-e58ca6e7-591d-40d2-8e40-9cf88cad8dff
  • WINDOWS-HOTFIX-MS16-098-efde1cfa-d1bb-4ac5-bfea-712296100068

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;