CVE-2016-3299

EUVD-2016-4331

09.08.2016, 21:59

Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow remote attackers to hijack network traffic or bypass intended Enhanced Protected Mode (EPM) or application container protection mechanisms, and consequently render untrusted content in a browser, by leveraging how NetBIOS validates responses, aka "NetBIOS Spoofing Vulnerability."

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.3 MEDIUM	NETWORK	HIGH	NONE	CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 91%

Affected Products (NVD)

Vendor	Product	Version
microsoft	windows_10	-
microsoft	windows_7	*
microsoft	windows_8.1	*
microsoft	windows_rt_8.1	*
microsoft	windows_server_2008	-
microsoft	windows_server_2012	-
microsoft	windows_vista	*

𝑥

= Vulnerable software versions

Windows Releases

Platform

Version

Windows 10

(x64, x86)	KB3163017
1511 (x64, x86)	KB3163018

Windows 7

Service Pack 1 (x64, x86)

KB3161949

Windows 8.1

(x64, x86)

KB3161949

Windows RT 8.1

All

KB3161949

Windows Server 2008

Service Pack 2 (x64, x86)	KB3161949
Service Pack 2 Server Core (x64, x86)	KB3161949

Windows Server 2008 R2

Service Pack 1 (x64)	KB3161949
Service Pack 1 Server Core (x64)	KB3161949

Windows Server 2012

Server Core	KB3161949
Standard	KB3161949

Windows Server 2012 R2

Server Core	KB3161949
Standard	KB3161949

Windows Vista

Service Pack 2	KB3161949
x64 Edition	KB3161949

Common Weakness Enumeration

CWE-284 - Improper Access Control
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References

http://www.securityfocus.com/bid/92387

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-077

http://www.securityfocus.com/bid/92387

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-077