Endpoint Vulnerability

Microsoft: Windows Animation Manager Memory Corruption Vulnerability

Description

A remote code execution vulnerability exists when the Windows Animation Manager improperly handles objects in memory. An attacker who successfully exploited the vulnerability could install programs; view, change, or delete data; or create new accounts with full user rights. An attacker could exploit the vulnerability by convincing a user to visit a malicious webpage. The security update addresses the vulnerability by correcting how the Windows Animation Manager handles objects in memory.

Affected Products

Windows RT 8.1,Windows Server 2016,Windows Server 2012,Windows 8,Windows 7,Windows 10,Windows Server 2008

References

CVE-2016-7205,