CVE-2016-3237 Microsoft Windows Authentication Methods Elevation of Privileges (MS16-101)漏洞银行丨0day Bank

2016年8月10日 2058点热度 0人点赞 0条评论

漏洞信息

Microsoft Windows Authentication is vulnerable to multiple Elevation of Privilege issues.
The security update resolves the following vulnerabilities:

An elevation of privilege vulnerability exists when Windows Netlogon improperly establishes a secure communications channel to a domain controller. (CVE-2016-3300)

An elevation of privilege vulnerability exists in Windows when Kerberos improperly handles a password change request and falls back to NT LAN Manager (NTLM) Authentication Protocol as the default authentication protocol. (CVE-2016-3237)

This security update is rated Important for all supported releases of Microsoft Windows.

漏洞危害

Successfully exploiting this vulnerability might allow a local attacker to execute arbitrary code or bypass Kerberos authentication.

解决方案

Refer to MS16-101 for more information.

Patch:
Following are links for downloading patches to fix the vulnerabilities:

MS16-101: Windows Vista Service Pack 2

MS16-101: Windows Vista x64 Edition Service Pack 2

MS16-101: Windows Server 2008 for 32-bit Systems Service Pack 2

MS16-101: Windows Server 2008 for x64-based Systems Service Pack 2

MS16-101: Windows Server 2008 for Itanium-based Systems Service Pack 2

MS16-101: Windows 7 for 32-bit Systems Service Pack 1