Rapid7 Vulnerability & Exploit Database

MS16-137: Security Update for Windows Authentication Methods (3199173)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-137: Security Update for Windows Authentication Methods (3199173)

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
11/08/2016
Created
07/25/2018
Added
11/08/2016
Modified
11/18/2021

Description

An information disclosure vulnerability exists when Windows Virtual Secure Mode improperly handles objects in memory. A locally-authenticated attacker who successfully exploited this vulnerability could be able to read sensitive information on the target system.

Solution(s)

  • WINDOWS-HOTFIX-MS16-137-0bdc2858-0467-447a-ae99-f6974ea413f4
  • WINDOWS-HOTFIX-MS16-137-7d3cfcf5-c0e3-4c2d-965f-43db88ab2e27
  • WINDOWS-HOTFIX-MS16-137-9068c1f9-71dd-4894-b67c-c4b32961a208
  • WINDOWS-HOTFIX-MS16-137-a359777e-299b-4327-b9c0-7e13cc2efb4a
  • WINDOWS-HOTFIX-MS16-137-d6f80174-8fb0-4c5e-86cc-de6e43f50535
  • WINDOWS-HOTFIX-MS16-137-fa6a3a4b-cbe4-44e4-ac3b-f003528da640
  • WINDOWS-HOTFIX-MS16-142-104ebf82-9026-4375-aacb-5dd0b4673017
  • WINDOWS-HOTFIX-MS16-142-1ae0bbb6-3162-4c00-8033-2d992d3a87fe
  • WINDOWS-HOTFIX-MS16-142-243a2ce9-3071-4a8a-8fdb-08a9f36bd36a
  • WINDOWS-HOTFIX-MS16-142-25bb083e-21f1-46cf-9000-124c57cf8568
  • WINDOWS-HOTFIX-MS16-142-2fde341c-622e-4189-b807-3b3798fbcc23
  • WINDOWS-HOTFIX-MS16-142-31c27622-134b-41c9-8868-12932e358864
  • WINDOWS-HOTFIX-MS16-142-4dff0e5a-d647-4104-a376-54165c691598
  • WINDOWS-HOTFIX-MS16-142-58111ec9-bb9f-48be-903c-f2588bfe68ec
  • WINDOWS-HOTFIX-MS16-142-67f7223a-468a-41e8-9217-c856c369ebad
  • WINDOWS-HOTFIX-MS16-142-73d9f61c-7c3b-4fb1-a2ff-39fcfbccc688
  • WINDOWS-HOTFIX-MS16-142-81335179-bd72-4e7c-955c-2304fb3ad889
  • WINDOWS-HOTFIX-MS16-142-87db364d-d6b5-48bf-95b8-9d68591934a9
  • WINDOWS-HOTFIX-MS16-142-8f6c6c50-e2ba-4f4f-97a8-489d597f806a
  • WINDOWS-HOTFIX-MS16-142-aa5925f1-3cf2-4e9b-8792-0b1633e80329
  • WINDOWS-HOTFIX-MS16-142-b92492c0-9ba6-4d83-846a-099ebb7fcfff
  • WINDOWS-HOTFIX-MS16-142-c1bfc173-fb5b-4d54-8101-cbc10ea74953
  • WINDOWS-HOTFIX-MS16-142-d5815022-1c24-4e0e-850b-e42f5b2f25b9
  • WINDOWS-HOTFIX-MS16-142-daf935d1-102b-402d-8fea-fc69a84e3ea6
  • WINDOWS-HOTFIX-MS16-142-de8d98fe-7f2b-4ee6-adc3-6be64fc1fc8d

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;