MS16-071: Security Update for Microsoft Windows DNS Server (3164065)

critical Nessus Plugin ID 91599

Synopsis

The remote host is affected by a remote code execution vulnerability.

Description

The remote Windows host is affected by a remote code execution vulnerability in the Windows Domain Name System (DNS) server due to improper handling of DNS requests. An unauthenticated, remote attacker can exploit this, via specially crafted DNS requests, to execute arbitrary code in the context of the Local System Account.

Solution

Microsoft has released a set of patches for Windows 2012 and 2012 R2.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2016/ms16-071

Plugin Details

Severity: Critical

ID: 91599

File Name: smb_nt_ms16-071.nasl

Version: 1.9

Type: local

Agent: windows

Published: 6/14/2016

Updated: 11/19/2019

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2016-3227

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 6/14/2016

Vulnerability Publication Date: 6/14/2016

Reference Information

CVE: CVE-2016-3227

BID: 91117

IAVA: 2016-A-0153

MSFT: MS16-071

MSKB: 3161951, 3164065