CVE-2016-0051

EPSS 23.4%

Vexday Risk Score

43Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 23.4%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado

Lifecycle

09 Feb 2016Metasploit module available

09 Feb 2016Public PoC

10 Feb 2016Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

Who exploits it — 1

Groups known to exploit this vulnerability (MITRE ATT&CK attribution).

APT / StateWhitefly

The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "WebDAV Elevation of Privilege Vulnerability."

Affected products

n/a · n/a

public PoCs found — 9

githubgithub.com/koczkatamas/CVE-2016-0051★ 323 githubgithub.com/hexx0r/CVE-2016-0051★ 42 githubgithub.com/ganrann/CVE-2016-0051★ 0 exploitdbwww.exploit-db.com/exploits/39788unverified exploitdbwww.exploit-db.com/exploits/40085unverified cve_referencewww.exploit-db.com/exploits/39432/unverified exploitdbwww.exploit-db.com/exploits/39432unverified cve_referencewww.exploit-db.com/exploits/39788/unverified cve_referencewww.exploit-db.com/exploits/40085/unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-016 https://www.exploit-db.com/exploits/39432/https://www.exploit-db.com/exploits/39788/https://www.exploit-db.com/exploits/40085/http://www.securitytracker.com/id/1034980