CVE-2016-0040
93Vexday Risk Score
Patch now. It under exploitation confirmed by CISA and has a working public exploit.
ssvc Actcvss 7.8epss 25%
from disclosure to weapon16 days
Published on NVDFeb 10
1st PoC+16d
metasploitDec 4
CISA KEV+2238d
exploitation probability
25%top 2% of all CVEs
observed exploitation
yesCISA + VulnCheck
5 public exploit(s)
Action required by CISAfederal deadline: 2022-04-18
Apply updates per vendor instructions.
In short
A flaw in the Windows kernel allows a local user to run a specially crafted program that gives them higher system privileges than they should have. This is dangerous because it lets an attacker take full control of the computer.
Technical detail
A privilege escalation vulnerability in the Windows kernel (Vista SP2, Server 2008 SP2/R2 SP1, Windows 7 SP1) allows a local attacker to execute a malicious application that exploits insufficient validation in kernel mode operations, resulting in elevation to SYSTEM privileges. The attack requires local code execution capability but grants unrestricted kernel-level access.
Summary generated and translated by AI from the official description.
The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Windows Elevation of Privilege Vulnerability."
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Affected products
n/a · n/apublic PoCs found — 5
githubgithub.com/Rootkitsmm-zz/cve-2016-0040★ 45githubgithub.com/de7ec7ed/CVE-2016-0040★ 14cve_referencewww.exploit-db.com/exploits/44586/unverifiedexploitdbwww.exploit-db.com/exploits/44586unverifiedvulncheckvulncheck.com/xdb/58efcffaec67unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.