CVE-2016-3213
EUVD-2016-425216.06.2016, 01:59
The Web Proxy Auto Discovery (WPAD) protocol implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold and 1511, and Internet Explorer 9 through 11 has an improper fallback mechanism, which allows remote attackers to gain privileges via NetBIOS name responses, aka "WPAD Elevation of Privilege Vulnerability."Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_10 | - |
| microsoft | windows_7 | * |
| microsoft | windows_8.1 | * |
| microsoft | windows_rt_8.1 | * |
| microsoft | windows_server_2008 | * |
| microsoft | windows_server_2012 | - |
| microsoft | windows_vista | * |
𝑥
= Vulnerable software versions
Windows Releases
Platform | Version | ||||||||
|---|---|---|---|---|---|---|---|---|---|
| Windows 10 |
| ||||||||
| Windows 7 |
| ||||||||
| Windows 8.1 |
| ||||||||
| Windows RT 8.1 |
| ||||||||
| Windows Server 2008 |
| ||||||||
| Windows Server 2008 R2 |
| ||||||||
| Windows Server 2012 |
| ||||||||
| Windows Server 2012 R2 |
| ||||||||
| Windows Vista |
|
Common Weakness Enumeration
References