CVE-2016-1715 — MEDIUM (6.6)

Vulnerability Description

The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service (memory corruption and system crash) or gain privileges via a 768 syscall, which triggers a zero to be written to an arbitrary kernel memory location.

CVSS Score

6.6

MEDIUM

CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:H

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality

LOW

Integrity

LOW

Availability

HIGH

Affected Products

Vendor	Product	Versions
Microsoft	Windows	All versions
Mcafee	Application Control	6.1.0

Related Weaknesses (CWE)

CWE-189

References

http://www.zerodayinitiative.com/advisories/ZDI-16-007
https://kc.mcafee.com/corporate/index?page=content&id=SB10145PatchVendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-16-007
https://kc.mcafee.com/corporate/index?page=content&id=SB10145PatchVendor Advisory

FAQ

What is CVE-2016-1715?

CVE-2016-1715 is a vulnerability with a CVSS score of 6.6 (MEDIUM). The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Wind...

How severe is CVE-2016-1715?

CVE-2016-1715 has been rated MEDIUM with a CVSS base score of 6.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-1715?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows, Mcafee Application Control.