ASLR Bypass Vulnerability in Microsoft Windows Systems
CVE-2016-7214

3.3LOW

Key Information:

Vendor

Microsoft
Status
Windows Rt 8.1
Windows Server 2012
Windows Server 2016
Windows 7
Vendor
CVE Published:
10 November 2016

What is CVE-2016-7214?

This vulnerability exists in the kernel-mode drivers of various Microsoft Windows versions, allowing local users to bypass Address Space Layout Randomization (ASLR) protections. Through the exploitation of this flaw, an attacker can craft a malicious application that compromises the security schema of the operating system, potentially leading to information disclosure and enhanced system access.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securitytracker.com/id/1037251
vdb-entryx_refsource_SECTRACK
https://docs.microsoft.com/en-us/security-updates/securit...
vendor-advisoryx_refsource_MS
http://www.securityfocus.com/bid/93991
vdb-entryx_refsource_BID

CVSS V3.1

Score:
3.3
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.