vulnerability
MS16-136: Security Update for SQL Server (3199641)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:L/Au:S/C:P/I:P/A:P) | Nov 8, 2016 | Nov 8, 2016 | Jul 28, 2025 |
Severity
7
CVSS
(AV:N/AC:L/Au:S/C:P/I:P/A:P)
Published
Nov 8, 2016
Added
Nov 8, 2016
Modified
Jul 28, 2025
Description
Elevation of privilege vulnerabilities exist in Microsoft SQL Server when it improperly handles pointer casting. An attacker could exploit the vulnerabilities if their credentials allow access to an affected SQL server database. An attacker who successfully exploited the vulnerabilities could gain elevated privileges that could be used to view, change, or delete data; or create new accounts.
Solutions
WINDOWS-HOTFIX-MS16-136-02995698-d6ea-4032-8f4d-a4c189e69a79WINDOWS-HOTFIX-MS16-136-15ad9fbb-65a2-410d-9a7b-0e1e55dd30dbWINDOWS-HOTFIX-MS16-136-3716b132-bb07-422a-8984-7160e251ff86WINDOWS-HOTFIX-MS16-136-5c3443cf-ccaf-45a4-aad9-1ec1ae458a5cWINDOWS-HOTFIX-MS16-136-6d9214da-3722-4c49-af6e-a4ee1bb6c251WINDOWS-HOTFIX-MS16-136-8b81e9ad-2860-4037-8a6e-31dd535d7c57WINDOWS-HOTFIX-MS16-136-abf14da8-bf5a-46f9-a4f4-257e41a8a5d0WINDOWS-HOTFIX-MS16-136-ac83e17a-1326-41b5-94aa-a0dba75b178aWINDOWS-HOTFIX-MS16-136-d848edd0-b379-4d01-8dce-01f328108a80WINDOWS-HOTFIX-MS16-136-f2b002ef-b115-42f5-9db5-114bb544b199
References
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.