Microsoft Windows Kernel Local CVE-2016-0073 Elevation of Privilege Vulnerability
Description
An elevation of privilege vulnerability exists when the Windows Kernel API improperly allows a user to access sensitive registry information. An attacker who successfully exploited the vulnerability could gain access to user account information that is not intended for the user. A locally authenticated attacker could exploit this vulnerability by running a specially crafted application. The security update addresses the vulnerability by helping to ensure that the Windows Kernel API correctly restricts access to user account information.
Affected Applications
Windows 10
Windows RT 8.1
Windows Server 2012
Windows 8