Rapid7 Vulnerability & Exploit Database

MS16-130: Security Update for Microsoft Windows (3199172)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-130: Security Update for Microsoft Windows (3199172)

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
11/08/2016
Created
07/25/2018
Added
11/08/2016
Modified
11/18/2021

Description

An elevation of privilege vulnerability exists in Windows when Windows Input Method Editor (IME) improperly handles DLL loading. There is no impact without IME present.

Solution(s)

  • WINDOWS-HOTFIX-MS16-130-4d4db9b5-3a16-4215-ac46-e9da9e978569
  • WINDOWS-HOTFIX-MS16-130-5222bcce-90fb-4605-9a30-d49b557d2a0e
  • WINDOWS-HOTFIX-MS16-130-6b94cdc3-27fa-4e92-baf2-3a14029ad51c
  • WINDOWS-HOTFIX-MS16-130-70512271-9d04-4daf-8c85-878dbf709a18
  • WINDOWS-HOTFIX-MS16-130-7499212f-5d2d-4def-8d3b-7dfb8a3dcbe4
  • WINDOWS-HOTFIX-MS16-130-88a02597-87fd-4ca1-afa5-066bd20d0a63
  • WINDOWS-HOTFIX-MS16-130-98e95261-5fd7-4115-83c2-56946d33026e
  • WINDOWS-HOTFIX-MS16-130-c4d4b096-6b18-4934-842f-6a8358fc961b
  • WINDOWS-HOTFIX-MS16-130-e98eeb00-1c94-4a8f-9bdb-ac502b755ee1
  • WINDOWS-HOTFIX-MS16-130-ed064303-cc41-4d01-8abc-efe1f3c30969
  • WINDOWS-HOTFIX-MS16-130-f48d145f-1320-404c-8e56-a19dc0cee583
  • WINDOWS-HOTFIX-MS16-142-104ebf82-9026-4375-aacb-5dd0b4673017
  • WINDOWS-HOTFIX-MS16-142-1ae0bbb6-3162-4c00-8033-2d992d3a87fe
  • WINDOWS-HOTFIX-MS16-142-243a2ce9-3071-4a8a-8fdb-08a9f36bd36a
  • WINDOWS-HOTFIX-MS16-142-25bb083e-21f1-46cf-9000-124c57cf8568
  • WINDOWS-HOTFIX-MS16-142-2fde341c-622e-4189-b807-3b3798fbcc23
  • WINDOWS-HOTFIX-MS16-142-31c27622-134b-41c9-8868-12932e358864
  • WINDOWS-HOTFIX-MS16-142-4dff0e5a-d647-4104-a376-54165c691598
  • WINDOWS-HOTFIX-MS16-142-58111ec9-bb9f-48be-903c-f2588bfe68ec
  • WINDOWS-HOTFIX-MS16-142-67f7223a-468a-41e8-9217-c856c369ebad
  • WINDOWS-HOTFIX-MS16-142-73d9f61c-7c3b-4fb1-a2ff-39fcfbccc688
  • WINDOWS-HOTFIX-MS16-142-81335179-bd72-4e7c-955c-2304fb3ad889
  • WINDOWS-HOTFIX-MS16-142-87db364d-d6b5-48bf-95b8-9d68591934a9
  • WINDOWS-HOTFIX-MS16-142-8f6c6c50-e2ba-4f4f-97a8-489d597f806a
  • WINDOWS-HOTFIX-MS16-142-aa5925f1-3cf2-4e9b-8792-0b1633e80329
  • WINDOWS-HOTFIX-MS16-142-b92492c0-9ba6-4d83-846a-099ebb7fcfff
  • WINDOWS-HOTFIX-MS16-142-c1bfc173-fb5b-4d54-8101-cbc10ea74953
  • WINDOWS-HOTFIX-MS16-142-d5815022-1c24-4e0e-850b-e42f5b2f25b9
  • WINDOWS-HOTFIX-MS16-142-daf935d1-102b-402d-8fea-fc69a84e3ea6
  • WINDOWS-HOTFIX-MS16-142-de8d98fe-7f2b-4ee6-adc3-6be64fc1fc8d

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;