Vulnerability Details : CVE-2016-0051
Public exploit exists!
The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "WebDAV Elevation of Privilege Vulnerability."
Vulnerability category: Gain privilege
Exploit prediction scoring system (EPSS) score for CVE-2016-0051
Probability of exploitation activity in the next 30 days: 0.05%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 19 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2016-0051
-
MS16-016 mrxdav.sys WebDav Local Privilege Escalation
Disclosure Date: 2016-02-09First seen: 2020-04-26exploit/windows/local/ms16_016_webdavThis module exploits the vulnerability in mrxdav.sys described by MS16-016. The module will spawn a process on the target system and elevate its privileges to NT AUTHORITY\SYSTEM before executing the specified payload within the context of the elevated process. Autho
CVSS scores for CVE-2016-0051
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.2
|
HIGH | AV:L/AC:L/Au:N/C:C/I:C/A:C |
3.9
|
10.0
|
NIST |
7.8
|
HIGH | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
1.8
|
5.9
|
NIST |
CWE ids for CVE-2016-0051
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2016-0051
-
https://www.exploit-db.com/exploits/39432/
Microsoft Windows 7 SP1 (x86) - 'WebDAV' Local Privilege Escalation (MS16-016) (1)
-
https://www.exploit-db.com/exploits/40085/
Microsoft Windows 7 SP1 - 'mrxdav.sys' WebDAV Privilege Escalation (MS16-016) (Metasploit)
-
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-016
Microsoft Security Bulletin MS16-016 - Important | Microsoft Docs
-
http://www.securitytracker.com/id/1034980
Microsoft WebDAV Client Input Validation Flaw Lets Local Users Gain Elevated Privileges - SecurityTracker
-
https://www.exploit-db.com/exploits/39788/
Microsoft Windows 7 - 'WebDAV' Local Privilege Escalation (MS16-016) (2)
Products affected by CVE-2016-0051
- cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*