[월:] 2016년 12월

MS16-153 – Important: Security Update for Common Log File System Driver (3207328) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (December 13, 2016): Bulletin published.Summary: This security update resolves a vulnerability in Microsoft Windows. The vulnerability could allow Information Disclosure when the Windows Common Log File System (CLFS) driver improperly handles objects in memory. In a local attack scenario, an attacker could exploit this vulnerability by running a specially crafted application to bypass security measures on the affected system allowing further exploitation. Source: MS16-153 – Important: Security Update for Common Log File System Driver (3207328) – Version: 1.0

MS16-152 – Important: Security Update for Windows Kernel (3199709) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (December 13, 2016): Bulletin published.Summary: The security update addresses the vulnerability by helping to ensure the kernel API correctly enforces access controls applied to this information. This security update resolves a vulnerability in Microsoft Windows. An information disclosure vulnerability exists when the Windows Kernel improperly handles objects in memory. Source: MS16-152 – Important: Security Update for Windows Kernel (3199709) – Version: 1.0

MS16-151 – Important: Security Update for Windows Kernel-Mode Drivers (3205651) – Version: 1.0 Severity Rating: ImportantRevision Note: V1.0 (December 13, 2016): Bulletin publishedSummary: This security update resolves vulnerabilities in Microsoft Windows. The vulnerabilities could allow elevation of privilege if an attacker logs on to an affected system and runs a specially crafted application that could exploit the vulnerabilities and take control of an affected system. Source: MS16-151 – Important: Security Update for Windows Kernel-Mode Drivers (3205651) – Version: 1.0