Main Vulnerability Database Exploits ID:6373 - Exploit for Privilege escalation in Windows and Windows Server - CVE-2016-0165

ID:6373 - Exploit for Privilege escalation in Windows and Windows Server - CVE-2016-0165

Published: June 17, 2021

Vulnerability identifier: #VU5060

Vulnerability risk: Medium

CVE-ID: CVE-2016-0165

CWE-ID: CWE-264

Exploitation vector: Local access

Vulnerable software:
Windows
Windows Server

Link to public exploit:

https://www.exploit-db.com/exploits/44480/

Vulnerability description

The vulnerability allows a local attacker to gain elevated privileges on the target system.

The vulnerability exists due to improper handling of objects in memory by the kernel-mode driver. A local attacker can run a specially crafted program, gain elevated privileges and execute arbitrary code with SYSTEM privileges.

Successful exploitation of this vulnerability may result in arbitrary code execution on the vulnerable system.

Note: the vulnerability was being actively exploited.

Remediation

Install update from vendor's website.

ID:6373 - Exploit for Privilege escalation in Windows and Windows Server - CVE-2016-0165

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human