Vulnerabilities > CVE-2016-7222 - 7PK - Security Features vulnerability in Microsoft Windows 10 and Windows Server 2016
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Task Scheduler in Microsoft Windows 10 Gold, 1511, and 1607 and Windows Server 2016 allows local users to gain privileges via a crafted UNC pathname in a task, aka "Task Scheduler Elevation of Privilege Vulnerability."
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 4 |
Common Weakness Enumeration (CWE)
Msbulletin
| bulletin_id | MS16-130 |
| bulletin_url | |
| date | 2016-11-08T00:00:00 |
| impact | Remote Code Execution |
| knowledgebase_id | 3199172 |
| knowledgebase_url | |
| severity | Critical |
| title | Security Update for Microsoft Windows |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS16-130.NASL |
| description | The remote Windows host is missing a security update or security rollup. It is, therefore, affected by the following vulnerabilities : - A remote code execution vulnerability exists in the Windows image file handling functionality due to improper handling of image files. An unauthenticated, remote attacker can exploit this vulnerability by convincing a user to open a specially crafted image file from a web page or email message, resulting in the execution of arbitrary code in the context of the current user. (CVE-2016-7212) - An elevation of privilege vulnerability exists in Windows Input Method Editor (IME) due to improper loading of DLL files. A local attacker can exploit this, via a specially crafted application, to elevate privileges. (CVE-2016-7221) - An elevation of privilege vulnerability exists in Windows Task Scheduler due to improper handling of UNC paths. An authenticated, remote attacker can exploit this vulnerability by scheduling a new task with a specially crafted UNC path, resulting in the execution of arbitrary code with elevated system privileges. (CVE-2016-7222) |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 94631 |
| published | 2016-11-08 |
| reporter | This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/94631 |
| title | MS16-130: Security Update for Microsoft Windows (3199172) |