Main Vulnerability Database SB2016071301

SB2016071301 - Secure Boot bypass vulnerability in Microsoft Windows

Published: July 13, 2016

Security Bulletin ID SB2016071301

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Physical access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Secure Boot bypass vulnerability (CVE-ID: CVE-2016-3287)

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to operating system incorrectly applies affected security policy. A local user with administrative privileges or physical access to computer can disable code integrity checks and allow execution of test-signed executables and drivers.

Successful exploitation of this vulnerability may allow an attacker to gain elevated privileges within the system, access encrypted data, stored on the system, bypass Secure Boot Integrity Validation for BitLocker and the Device Encryption security features.

Remediation

Install update from vendor's website.

References

https://technet.microsoft.com/en-us/library/security/MS16-094