Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2016-0079 — Sensitive Information Exposure in Microsoft Windows 10

CWE-200 — Sensitive Information Exposure7 documents6 sources

Severity

5.0MEDIUMNVD

EPSS

3.0%

top 13.35%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows 10 Msrc Windows 10 FOR 32-bit Systems Msrc Windows 10 FOR X64-based Systems +4 more

Timeline

PublishedOct 14

Latest updateMay 14

Description

The kernel in Microsoft Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application that makes an API call to access sensitive information in the registry, aka "Windows Kernel Local Elevation of Privilege Vulnerability."

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:NExploitability: 1.3 | Impact: 3.6

Affected Packages7 packages

▶NVDmicrosoft/windows_101511, 1607+1

▶msrcmsrc/windows_10_version_1511_for_32-bit_systems

▶msrcmsrc/windows_10_version_1607_for_32-bit_systems

▶msrcmsrc/windows_10_version_1511_for_x64-based_systems

▶msrcmsrc/windows_10_version_1607_for_x64-based_systems

🔴Vulnerability Details

GHSA

GHSA-p96c-prpx-6rhh: The kernel in Microsoft Windows 10 Gold, 1511, and 1607 allows local users to gain privileges via a crafted application that makes an API call to acce↗2022-05-14

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - NtLoadKeyEx Read Only Hive Arbitrary File Write Privilege Escalation (MS16-124)↗2016-10-20

▶

📋Vendor Advisories

Microsoft

Windows Kernel Local Elevation of Privilege Vulnerability↗2016-10-11

▶

🕵️Threat Intelligence

Talos

Microsoft Patch Tuesday - October 2016↗2016-10-11

▶

Talos

Microsoft Patch Tuesday - October 2016↗2016-10-11

▶

Zscaler

Zscaler found Multiple Security Vulnerabilities | 11-10-2016↗

▶