Microsoft Monthly Security Update (Nov 2016)

Last Update Date: 9 Nov 2016 17:45 Release Date: 9 Nov 2016 3296 Views

RISK: Extremely High Risk

Extremely High Risk

TYPE: Operating Systems - Windows OS

TYPE: Windows OS

Microsoft has released monthly security update for their products:

 

Vulnerable ProductSeverityImpactsNotesDetails (including CVE)
Windows (Graphics Component)Extremely Critical Extremely CriticalRemote Code Execution
Information Disclosure		Exploits in the wildMS16-132
EdgeHighly Critical Highly CriticalRemote Code Execution
Information Disclosure
Spoofing		Scattered ExploitsMS16-129
Windows (Kernel-Mode Drivers)Highly Critical Highly CriticalInformation Disclosure
Elevation of Privilege		Exploits in the wildMS16-135
Internet ExplorerHighly Critical Highly CriticalRemote Code Execution
Information Disclosure		Scattered ExploitsMS16-142
WindowsModerately Critical Moderately CriticalRemote Code Execution
Elevation of Privilege		 MS16-130
Windows (Video Control)Moderately Critical Moderately CriticalRemote Code Execution MS16-131
OfficeModerately Critical Moderately CriticalRemote Code Execution
Information Disclosure
Denial of Service		 MS16-133
Windows (Common Log File System Driver)Moderately Critical Moderately CriticalElevation of Privilege MS16-134
SQL ServerModerately Critical Moderately CriticalInformation Disclosure
Elevation of Privilege		 MS16-136
Windows (Authentication Methods)Moderately Critical Moderately CriticalDenial of Service
Elevation of Privilege		 MS16-137
Windows (Virtual Hard Disk Driver)Moderately Critical Moderately CriticalElevation of Privilege MS16-138
Windows (Kernel)Moderately Critical Moderately CriticalElevation of Privilege MS16-139
Windows (Boot Manager)Moderately Critical Moderately CriticalSecurity Restriction Bypass MS16-140

 

Number of 'Extremely Critical' product(s): 1

Number of 'Highly Critical' product(s): 3

Number of 'Moderately Critical' product(s): 9

Evaluation of overall 'Criticality Level': Extremely Critical

Impact

  • Denial of Service
  • Elevation of Privilege
  • Remote Code Execution
  • Security Restriction Bypass
  • Information Disclosure
  • Spoofing

System / Technologies affected

  • Edge
  • Internet Explorer 9, 10, 11
  • Office 2007, 2010, 2013, 2013 RT, 2016, Mac 2011, 2016 for Mac
  • Office Web Apps 2010, 2013
  • SharePoint Server 2010, 2013
  • SQL Server 2012, 2014, 2016
  • Windows Vista, 7, 8.1, RT 8.1, 10
  • Windows Server 2008, 2008 R2, 2012, 2012 R2, 2016

 

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

  • The vendor has issued security updates for the products. Please refer to 'Details' column in the above table for details of individual product update or run software update.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Microsoft Windows Elevation of Privilege Vulnerability

2 Nov 2016 3245 Views

Next

Adobe Monthly Security Update (Nov 2016)

9 Nov 2016 3057 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY