|CERT-In Vulnerability Note
Microsoft Windows Secure Kernel Mode Privilege Escalation Vulnerability
Original Issue Date:December 14, 2016
Severity Rating: HIGH
- Windows 10 for 32-bit Systems
- Windows 10 for x64-based Systems
- Windows 10 Version 1511 for 32-bit Systems
- Windows 10 Version 1511 for x64-based System
- Windows 10 Version 1607 for 32-bit Systems
- Windows 10 Version 1607 for x64-based Systems
- Windows Server 2016 for x64-based Systems
- Windows Server 2016 for x64-based Systems (Server Core installation)
A vulnerability has been reported in Microsoft Windows secure kernel mode which could be exploited by a authenticated local attacker to gain elevated privileges and violate virtual trust levels (VTL) on the target system.
The Privilege Escalation vulnerability exist in Microsoft windows Secure Kernel Mode due to improper handling of memory resources. A local attacker with login access to system could exploit this vulnerability by executing a specially crafted application on the affected system.
Successful exploitation of this vulnerability could allow a local attacker to gain elevated privileges and violate virtual trust levels (VTL) which could be used to launch further attacks on the targeted system.
Apply appropriate patch as mentioned in Microsoft Security Bulletin
The information provided herein is on "as is" basis, without warranty of any kind.
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003