N/A

The kernel in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold, 1511, and 1607 mishandles session objects, which allows local users to hijack sessions, and consequently gain privileges, via a crafted application, aka "Windows Session Object Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-3305.

N/A

N/A

Microsoft Windows 会话对象特权提升漏洞

Microsoft Windows是美国微软（Microsoft）公司发布的一系列操作系统。kernel是其中的内核。 Microsoft Windows中的kernel存在会话对象特权提升漏洞，该漏洞源于程序没有正确处理会话对象。本地攻击者可借助特制的应用程序利用该漏洞劫持其他用户的会话，获取权限。以下版本受到影响：Microsoft Windows Vista SP2，Windows Server 2008 SP2和R2 SP1，Windows 7 SP1，Windows 8.1，Windows Se

N/A

N/A