Main
Vulnerability Database
Exploits
ID:429 - Exploit for Information disclosure in Windows - CVE-2016-0079
ID:429 - Exploit for Information disclosure in Windows - CVE-2016-0079
Published: March 18, 2020
Vulnerability identifier: #VU967
Vulnerability risk: Low
CVE-ID: CVE-2016-0079
CWE-ID: CWE-284
Exploitation vector: Local access
Vulnerable software:
Windows
Windows
Link to public exploit:
Vulnerability description
The vulnerability allows a local user to obtain potentially sensitive information on the target system.
The weakness is due to improper access comtrol by a Windows kernel API on an affected system when handling access to sensitive registry informatio. By executing a specially crafted application attackers can gain access to sensitive registry information that can be used for further attacks.
Successful exploitation of the vulnerability leads to disclosure of potentially sensitive data on the vulnerable system.
The weakness is due to improper access comtrol by a Windows kernel API on an affected system when handling access to sensitive registry informatio. By executing a specially crafted application attackers can gain access to sensitive registry information that can be used for further attacks.
Successful exploitation of the vulnerability leads to disclosure of potentially sensitive data on the vulnerable system.
Remediation
Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.