Microsoft Windows Graphics Component Information Disclosure Vulnerability (CVE-2016-3216)
Publish Date: 29 de czerwca de 2016
Severity: : Critical
DESCRIPTION
An information disclosure vulnerability exists when the Windows Graphics Device Interface (GDI32.dll) fails to properly handle objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization (ASLR) bypass. An attacker who successfully exploited this vulnerability could cause an information disclosure that could that be used to bypass the ASLR security feature, which protects users from a broad class of vulnerabilities.
INFORMATION EXPOSURE
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1007668