CVE-2016-0046Improper Input Validation in Microsoft Windows Server 2012

CWE-20Improper Input Validation4 documents3 sources
Severity
7.8HIGHNVD
EPSS
27.4%
top 3.57%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows Server 2012
Timeline
PublishedFeb 10
Latest updateMay 14

Description

Windows Reader in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote attackers to execute arbitrary code via a crafted Reader file, aka "Microsoft Windows Reader Vulnerability."

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

Patches

Patch: docs.microsoft.comPatch: docs.microsoft.com

🔴Vulnerability Details

1
GHSA
GHSA-cq3q-9rjj-jhqx: Windows Reader in Microsoft Windows 82022-05-14

🕵️Threat Intelligence

2
Talos
Microsoft Patch Tuesday - February 20162016-02-09
Talos
Microsoft Patch Tuesday - February 20162016-02-09