MS16-048: Security Update for CSRSS (3148528)
High Nessus Plugin ID 90441
SynopsisThe remote host is affected by a security feature bypass vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by a security feature bypass vulnerability in the Client-Server Run-time Subsystem (CSRSS) due to improper management of process tokens in memory. A local attacker can exploit this vulnerability, via a specially crafted application, to escalate privileges and execute arbitrary code as an administrator.
SolutionMicrosoft has released a set of patches for Windows 2012, 8.1, RT 8.1, 2012 R2, and 10.