Elevation of privilege vulnerability in Windows NTLM - CVE-2016-7238ID: oval:org.secpod.oval:def:37923 | Date: (C)2016-11-09 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Windows Vista SP2, Server 2008 SP2, Windows 7 SP1, Server 2008 R2 SP1, Windows 8.1, 10, Server 2012 or Server 2012 R2 and is prone to an elevation of privilege vulnerability. A flaw is present in the Windows NTLM, which fails to properly handle NTLM password change requests. An attacker who successfully exploited this vulnerability could elevate their permissions from unprivileged user account to administrator.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2008 |
Microsoft Windows 8.1 |
Microsoft Windows Server 2012 R2 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows Vista |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |