Microsoft Windows Kernel Memory CVE-2016-7258 Information Disclosure Vulnerability
Description
An information disclosure vulnerability exists in Microsoft Windows when the Windows kernel fails to properly handle certain page fault system calls. An authenticated attacker who successfully exploited the vulnerability could disclose information from one process to another. To exploit the vulnerability, an attacker would have to either log on locally to an affected system, or convince a locally authenticated user to execute a specially crafted application. The security update addresses the vulnerability by correcting how the Windows kernel handles certain page fault system calls.
Affected Applications
Windows 10
Windows Server 2016