Rapid7 Vulnerability & Exploit Database

MS16-149: Security Update for Microsoft Windows (3205655)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-149: Security Update for Microsoft Windows (3205655)

Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
12/13/2016
Created
07/25/2018
Added
12/13/2016
Modified
11/18/2021

Description

An information disclosure vulnerability exists when a Windows Crypto driver running in kernel mode improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.

Solution(s)

  • WINDOWS-HOTFIX-MS16-144-0137cfb4-5203-45f1-bb2b-8054030a555b
  • WINDOWS-HOTFIX-MS16-144-02d26780-1d67-435d-b629-461cc57a0a7d
  • WINDOWS-HOTFIX-MS16-144-081b8efa-a01d-4567-8f4a-188d7385a0ea
  • WINDOWS-HOTFIX-MS16-144-0b86866e-3d6d-47c1-bf17-71928781d802
  • WINDOWS-HOTFIX-MS16-144-29870417-440b-4667-849d-18ffefb32547
  • WINDOWS-HOTFIX-MS16-144-36100bdd-30f5-4039-b8dd-fdde8720f835
  • WINDOWS-HOTFIX-MS16-144-431bdad0-e68b-4275-8f14-e9c90fa2a9b0
  • WINDOWS-HOTFIX-MS16-144-51ad43df-951a-49f7-8a33-dd04782a6bf1
  • WINDOWS-HOTFIX-MS16-144-6bbcbf4b-2cf7-470e-b63b-57a8f4529c87
  • WINDOWS-HOTFIX-MS16-144-85c2e54c-9120-4095-819e-27693fd85db6
  • WINDOWS-HOTFIX-MS16-144-a4aaf8b0-7672-4ce2-a63e-a4ea02b6a928
  • WINDOWS-HOTFIX-MS16-144-aefda319-d2f7-4ecc-be6b-9bcf2e617a30
  • WINDOWS-HOTFIX-MS16-144-b6fe6c4a-089b-43be-8cd8-ebaa394a9424
  • WINDOWS-HOTFIX-MS16-144-cd2c42a9-1799-477d-a5f5-e84cf4d40ba6
  • WINDOWS-HOTFIX-MS16-144-d2439e7c-0dc5-41d2-b412-5616d415c0e1
  • WINDOWS-HOTFIX-MS16-144-f20a00d1-dce0-4397-bde1-a8f06d87ad1a
  • WINDOWS-HOTFIX-MS16-144-f7915dec-5649-4571-8913-6797401db5af
  • WINDOWS-HOTFIX-MS16-144-f9443926-54c2-4542-bfa0-9b8e6e1ba3d7
  • WINDOWS-HOTFIX-MS16-144-ff4c348a-c6c2-4bbc-af33-01ef3ae1cc6e
  • WINDOWS-HOTFIX-MS16-149-1be01513-6816-4ab9-9bd8-506eff069778
  • WINDOWS-HOTFIX-MS16-149-30783ed4-d09f-448a-8ba2-78dcf3519711
  • WINDOWS-HOTFIX-MS16-149-46855345-66e9-420e-8cd1-b931cfb3d943
  • WINDOWS-HOTFIX-MS16-149-5fa7581f-8aac-4c4c-a1a3-92812af8a6c5
  • WINDOWS-HOTFIX-MS16-149-9a662888-e14a-444f-9083-5282f2cc2bf7
  • WINDOWS-HOTFIX-MS16-149-9b7fad1e-c542-4014-bfaf-b4773d36b282
  • WINDOWS-HOTFIX-MS16-149-bfc74d76-3a8f-403a-a4d5-b94d2eac5d7f
  • WINDOWS-HOTFIX-MS16-149-daf7e410-e4fe-4fef-ba64-1d63a559d5d2
  • WINDOWS-HOTFIX-MS16-149-f3f926ea-3585-4347-b575-28450a3c39c9
  • WINDOWS-HOTFIX-MS16-149-fa2dfbd1-0581-4d82-bc1d-96caf1545d65
  • WINDOWS-HOTFIX-MS16-149-fba8f906-dfe7-4210-94bc-b9cbd74a613a

References

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
  • Lightweight Endpoint Agent
  • Live Dashboards
  • Real Risk Prioritization
  • IT-Integrated Remediation Projects
  • Cloud, Virtual, and Container Assessment
  • Integrated Threat Feeds
  • Easy-to-Use RESTful API
  • Automation-Assisted Patching
  • Automated Containment
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;