Rapid7 Vulnerability & Exploit Database

MS16-153: Security Update for Common Log File System Driver (3207328)

Free InsightVM Trial No Credit Card Necessary
2024 Attack Intel Report Latest research by Rapid7 Labs
Back to Search

MS16-153: Security Update for Common Log File System Driver (3207328)

Severity
2
CVSS
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Published
12/13/2016
Created
07/25/2018
Added
12/13/2016
Modified
11/18/2021

Description

An information disclosure vulnerability exists when the Windows Common Log File System (CLFS) driver improperly handles objects in memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to bypass security measures on the affected system allowing further exploitation.

Solution(s)

  • WINDOWS-HOTFIX-MS16-144-0137cfb4-5203-45f1-bb2b-8054030a555b
  • WINDOWS-HOTFIX-MS16-144-02d26780-1d67-435d-b629-461cc57a0a7d
  • WINDOWS-HOTFIX-MS16-144-081b8efa-a01d-4567-8f4a-188d7385a0ea
  • WINDOWS-HOTFIX-MS16-144-0b86866e-3d6d-47c1-bf17-71928781d802
  • WINDOWS-HOTFIX-MS16-144-29870417-440b-4667-849d-18ffefb32547
  • WINDOWS-HOTFIX-MS16-144-36100bdd-30f5-4039-b8dd-fdde8720f835
  • WINDOWS-HOTFIX-MS16-144-431bdad0-e68b-4275-8f14-e9c90fa2a9b0
  • WINDOWS-HOTFIX-MS16-144-51ad43df-951a-49f7-8a33-dd04782a6bf1
  • WINDOWS-HOTFIX-MS16-144-6bbcbf4b-2cf7-470e-b63b-57a8f4529c87
  • WINDOWS-HOTFIX-MS16-144-85c2e54c-9120-4095-819e-27693fd85db6
  • WINDOWS-HOTFIX-MS16-144-a4aaf8b0-7672-4ce2-a63e-a4ea02b6a928
  • WINDOWS-HOTFIX-MS16-144-aefda319-d2f7-4ecc-be6b-9bcf2e617a30
  • WINDOWS-HOTFIX-MS16-144-b6fe6c4a-089b-43be-8cd8-ebaa394a9424
  • WINDOWS-HOTFIX-MS16-144-cd2c42a9-1799-477d-a5f5-e84cf4d40ba6
  • WINDOWS-HOTFIX-MS16-144-d2439e7c-0dc5-41d2-b412-5616d415c0e1
  • WINDOWS-HOTFIX-MS16-144-f20a00d1-dce0-4397-bde1-a8f06d87ad1a
  • WINDOWS-HOTFIX-MS16-144-f7915dec-5649-4571-8913-6797401db5af
  • WINDOWS-HOTFIX-MS16-144-f9443926-54c2-4542-bfa0-9b8e6e1ba3d7
  • WINDOWS-HOTFIX-MS16-144-ff4c348a-c6c2-4bbc-af33-01ef3ae1cc6e
  • WINDOWS-HOTFIX-MS16-153-42dff54d-ad8c-4d5c-894b-a9a200c26cf3
  • WINDOWS-HOTFIX-MS16-153-95b949fd-554a-468e-b545-be044d5b1a27
  • WINDOWS-HOTFIX-MS16-153-bb8fe503-2995-4d24-80de-1aea66c59938
  • WINDOWS-HOTFIX-MS16-153-f4b3eaf5-5184-4545-990e-7ad2fc1288df
  • WINDOWS-HOTFIX-MS16-153-f64b8929-67e3-4337-b40a-ce37e08c4e49

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;