Main
Vulnerability Database
Exploits
ID:433 - Exploit for Privilege escalation in Windows and Windows Server - CVE-2016-7185
ID:433 - Exploit for Privilege escalation in Windows and Windows Server - CVE-2016-7185
Published: March 18, 2020
Vulnerability identifier: #VU977
Vulnerability risk: High
CVE-ID: CVE-2016-7185
CWE-ID: CWE-119
Exploitation vector: Local access
Vulnerable software:
Windows
Windows Server
Windows
Windows Server
Link to public exploit:
Vulnerability description
The vulnerability allows a local user to obtain elevated privileges on the target system.
The weakness exists due to boundary error when handling crafted input. By using an application that is designed to submit a malicious input, attacker can obtain root privileges on the affected system that allows him to execute arbitrary code in kernel mode.
Successful exploitation of the vulnerability may result in complete vulnerable system compromise.
The weakness exists due to boundary error when handling crafted input. By using an application that is designed to submit a malicious input, attacker can obtain root privileges on the affected system that allows him to execute arbitrary code in kernel mode.
Successful exploitation of the vulnerability may result in complete vulnerable system compromise.
Remediation
Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.