Vulnerability in Microsoft Windows_10
CVE-2016-0128
The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establi…
EPSS: 0.770 (99.0th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N.
Affected products
- Microsoft Windows_10 — versions 1511
- Microsoft Windows_7
- Microsoft Windows_8.1
- Microsoft Windows_rt_8.1
- Microsoft Windows_server_2008 — versions r2
- Microsoft Windows_server_2012 — versions r2
- Microsoft Windows_vista
- N/a — versions n/a
Weakness classification (CWE)
Public proof-of-concept exploits
- ARPSyndicate/cvemon
- ErdemOzgen/ActiveDirectoryAttacks
- Nieuport/Active-Directory-Kill-Chain-Attack-Defense
- R0B1NL1N/AD-Attack-Defense
- Whiteh4tWolf/Attack-Defense
- ZyberPatrol/Active-Directory
- aymankhder/AD-attack-defense
- bhataasim1/AD-Attack-Defence
- geeksniper/active-directory-pentest
- hackeremmen/Active-Directory-Kill-Chain-Attack-Defense-
References
- secure@microsoft.com (Third Party Advisory, x_refsource_MISC)
- MS16-047 (x_refsource_MS, vendor-advisory, Patch, Vendor Advisory)
- VU#813296 (x_refsource_CERT-VN, US Government Resource, Third Party Advisory, third-party-advisory)
- secure@microsoft.com (x_refsource_MISC, Vendor Advisory)
- secure@microsoft.com (x_refsource_CONFIRM, Third Party Advisory)
- 1035534 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)
Frequently asked questions
- What is CVE-2016-0128?
- CVE-2016-0128 is a medium-severity vulnerability in Microsoft Windows_10, classified under CWE-254. CVSS score: 6.8/10. Published 2016-04-12.
- How severe is CVE-2016-0128?
- Medium severity. CVSS v3 base score is 6.8 out of 10.
- Is CVE-2016-0128 known to be exploited?
- 18 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.