Published: 14/10/2016 Updated: 12/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Graphics Device Interface (aka GDI or GDI+) in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; Office 2007 SP3; Office 2010 SP2; Word Viewer; Skype for Business 2016; Lync 2013 SP1; Lync 2010; Lync 2010 Attendee; and Live Meeting 2007 Console allows remote malicious users to bypass the ASLR protection mechanism via unspecified vectors, aka "GDI+ Information Disclosure Vulnerability," a different vulnerability than CVE-2016-3262.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft live meeting 2007
microsoft office 2007
microsoft windows 10 1607
microsoft lync 2010
microsoft windows 10 1511
microsoft windows 10 -
microsoft windows vista -
microsoft lync 2013
microsoft skype for business 2016
microsoft windows rt 8.1 -
microsoft windows server 2012 r2
microsoft windows server 2008 r2
microsoft windows server 2008 -
microsoft word viewer -
microsoft office 2010
microsoft windows server 2012 -
microsoft windows 8.1
microsoft windows 7 -

CWE-200 http://www.securityfocus.com/bid/93394 http://www.securitytracker.com/id/1036988 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-120 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-3263

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect