Microsoft Monthly Security Update (Dec 2016)

Last Update Date: 14 Dec 2016 10:57 Release Date: 14 Dec 2016 6254 Views

RISK: High Risk

High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

 

Vulnerable ProductSeverityImpactsNotesDetails (including CVE)
Internet ExplorerHighly Critical Highly CriticalRemote Code Execution
Information Disclosure
Security Restriction Bypass		Scattered ExploitsMS16-144
EdgeHighly Critical Highly CriticalRemote Code Execution
Information Disclosure		Scattered ExploitsMS16-145
Windows (Graphics Component)Highly Critical Highly CriticalRemote Code Execution
Information Disclosure		Scattered ExploitsMS16-146
Windows (Uniscribe)Moderately Critical Moderately CriticalRemote Code Execution MS16-147
OfficeModerately Critical Moderately CriticalRemote Code Execution
Information Disclosure
Security Restriction Bypass
Elevation of Privilege		 MS16-148
Windows (Kernel)Moderately Critical Moderately CriticalInformation Disclosure
Elevation of Privilege		 MS16-149
Windows (Secure Kernel Mode)Moderately Critical Moderately CriticalElevation of Privilege MS16-150
Windows (Kernel-Mode Drivers)Moderately Critical Moderately CriticalElevation of Privilege MS16-151
Windows (Kernel)Moderately Critical Moderately CriticalInformation Disclosure MS16-152
Windows (Common Log File System Driver)Moderately Critical Moderately CriticalInformation Disclosure MS16-153
Windows (.NET Framework)Moderately Critical Moderately CriticalInformation DisclosureScattered ExploitsMS16-155

 

Number of 'Extremely Critical' product(s): 0

Number of 'Highly Critical' product(s): 3

Number of 'Moderately Critical' product(s): 8

Evaluation of overall 'Criticality Level': Highly Critical

Impact

  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure

System / Technologies affected

  • Internet Explorer 9, 10, 11
  • Edge
  • Windows Vista, 7, 8.1, RT 8.1, 10
  • Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016
  • Office 2007, 2010, 2013, 2013 RT, 2016, Mac 2011, 2016 for Mac
  • Office Web Apps 2010
  • SharePoint Server 2007, 2010

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued security updates for the products. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Adobe Monthly Security Update (Dec 2016)

14 Dec 2016 6372 Views

Next

Mozilla Firefox Multiple Vulnerabilities

15 Dec 2016 5865 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY