vulnerability
MS16-032: Security Update for Secondary Logon to Address Elevation of Privilege (3143141)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:N/C:C/I:C/A:C) | Mar 8, 2016 | Mar 8, 2016 | May 3, 2022 |
Severity
7
CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Published
Mar 8, 2016
Added
Mar 8, 2016
Modified
May 3, 2022
Description
An elevation of privilege vulnerability exists in Microsoft Windows if the Windows Secondary Logon Service fails to properly manage request handles in memory. An attacker who successfully exploited this vulnerability could run arbitrary code as an administrator. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
Solutions
WINDOWS-HOTFIX-MS16-023-0c7e9829-cc88-4af8-ae95-e2823ab2cbfaWINDOWS-HOTFIX-MS16-023-3f5f2fab-88aa-4fbf-975d-94424a363208WINDOWS-HOTFIX-MS16-023-62cef694-cd47-4d46-be15-e0a592991d07WINDOWS-HOTFIX-MS16-023-a52756d1-e676-45c3-8fa3-af607ba9a62eWINDOWS-HOTFIX-MS16-032-06eae584-188d-4a35-805a-ef98beddcd3dWINDOWS-HOTFIX-MS16-032-16c48c45-953a-45be-8120-68abed4ce80fWINDOWS-HOTFIX-MS16-032-20b72bb2-5173-442c-a420-e10db9f01e87WINDOWS-HOTFIX-MS16-032-23b450a2-9ee0-4fd3-a682-e622380adde7WINDOWS-HOTFIX-MS16-032-25c78188-e502-455b-b5bc-29d68b7e9217WINDOWS-HOTFIX-MS16-032-2c403d58-269d-4a05-81dd-96af386f8c89WINDOWS-HOTFIX-MS16-032-49496e0a-95ea-42f9-8d7d-683fccb24749WINDOWS-HOTFIX-MS16-032-4fdd4ba1-7a1e-48a4-bb82-b9260c2c4715WINDOWS-HOTFIX-MS16-032-569ae122-f0f6-4efa-8fc1-0ed94da0221eWINDOWS-HOTFIX-MS16-032-589fd6e7-ae5f-48f8-a8a4-7fb2ff231ecfWINDOWS-HOTFIX-MS16-032-8910eac4-a706-4aff-a967-acb97c992fc0WINDOWS-HOTFIX-MS16-032-95356e63-5b18-4113-8b40-7e6a8f50c184WINDOWS-HOTFIX-MS16-032-b61ebec7-0128-4115-aebd-c7470a5d0571WINDOWS-HOTFIX-MS16-032-c184eb68-7bed-47c1-8d29-84b60bd511b5WINDOWS-HOTFIX-MS16-032-cd149317-d2b4-4c83-ac12-a4890a5bce6aWINDOWS-HOTFIX-MS16-032-e0040b2b-4381-4e56-989f-9bd4508999b0WINDOWS-HOTFIX-MS16-032-e0abc60a-c3a2-41d2-933d-126f3831bfe6WINDOWS-HOTFIX-MS16-032-ead2153e-1515-4fa9-bf0e-b766f78ab4f8
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.