Rapid7 Vulnerability & Exploit Database

MS16-135: Security Update for Windows Kernel-Mode Drivers (3199135)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-135: Security Update for Windows Kernel-Mode Drivers (3199135)

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
11/08/2016
Created
07/25/2018
Added
11/08/2016
Modified
05/03/2022

Description

An Information disclosure vulnerability exists in the Windows kernel that could allow an attacker to retrieve information that could lead to a Kernel Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited the vulnerability could retrieve the memory address of a kernel object.

Solution(s)

  • WINDOWS-HOTFIX-MS16-135-01e42c49-ade4-4558-b5c1-63eb91a6188e
  • WINDOWS-HOTFIX-MS16-135-03b2eb0c-bb9d-405f-beee-a5e500e5ce25
  • WINDOWS-HOTFIX-MS16-135-2a5c9ba9-0b2a-4784-a9f6-b6694127b773
  • WINDOWS-HOTFIX-MS16-135-48174882-eb90-4093-a05f-2a138e92d09a
  • WINDOWS-HOTFIX-MS16-135-69d1f69a-7b06-45a7-b83f-318efcc45d52
  • WINDOWS-HOTFIX-MS16-135-8e702263-664a-4d61-a1c7-0c7be806a7cb
  • WINDOWS-HOTFIX-MS16-135-bfa20b5c-d7ea-484a-b5a4-367d69ff1580
  • WINDOWS-HOTFIX-MS16-135-c0549aab-ff1d-45d2-8913-3bafda7662e3
  • WINDOWS-HOTFIX-MS16-135-d50642fa-b60e-49c9-89b2-5c13de50bbee
  • WINDOWS-HOTFIX-MS16-135-e2b05498-7293-4f90-ad0a-17236d74e4fc
  • WINDOWS-HOTFIX-MS16-135-e4b69f26-377d-45c3-b536-9c4a77e3cabf
  • WINDOWS-HOTFIX-MS16-135-eacae39a-ef8f-41ba-bbf2-0aa04e04a45f
  • WINDOWS-HOTFIX-MS16-142-104ebf82-9026-4375-aacb-5dd0b4673017
  • WINDOWS-HOTFIX-MS16-142-1ae0bbb6-3162-4c00-8033-2d992d3a87fe
  • WINDOWS-HOTFIX-MS16-142-243a2ce9-3071-4a8a-8fdb-08a9f36bd36a
  • WINDOWS-HOTFIX-MS16-142-25bb083e-21f1-46cf-9000-124c57cf8568
  • WINDOWS-HOTFIX-MS16-142-2fde341c-622e-4189-b807-3b3798fbcc23
  • WINDOWS-HOTFIX-MS16-142-31c27622-134b-41c9-8868-12932e358864
  • WINDOWS-HOTFIX-MS16-142-4dff0e5a-d647-4104-a376-54165c691598
  • WINDOWS-HOTFIX-MS16-142-58111ec9-bb9f-48be-903c-f2588bfe68ec
  • WINDOWS-HOTFIX-MS16-142-67f7223a-468a-41e8-9217-c856c369ebad
  • WINDOWS-HOTFIX-MS16-142-73d9f61c-7c3b-4fb1-a2ff-39fcfbccc688
  • WINDOWS-HOTFIX-MS16-142-81335179-bd72-4e7c-955c-2304fb3ad889
  • WINDOWS-HOTFIX-MS16-142-87db364d-d6b5-48bf-95b8-9d68591934a9
  • WINDOWS-HOTFIX-MS16-142-8f6c6c50-e2ba-4f4f-97a8-489d597f806a
  • WINDOWS-HOTFIX-MS16-142-aa5925f1-3cf2-4e9b-8792-0b1633e80329
  • WINDOWS-HOTFIX-MS16-142-b92492c0-9ba6-4d83-846a-099ebb7fcfff
  • WINDOWS-HOTFIX-MS16-142-c1bfc173-fb5b-4d54-8101-cbc10ea74953
  • WINDOWS-HOTFIX-MS16-142-d5815022-1c24-4e0e-850b-e42f5b2f25b9
  • WINDOWS-HOTFIX-MS16-142-daf935d1-102b-402d-8fea-fc69a84e3ea6
  • WINDOWS-HOTFIX-MS16-142-de8d98fe-7f2b-4ee6-adc3-6be64fc1fc8d

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;