MS16-125: Security Update for Windows Diagnostic Hub (3193229)
High Nessus Plugin ID 94008
SynopsisThe remote Windows host is affected by an elevation of privilege vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by an elevation of privilege vulnerability in the Windows Diagnostics Hub Standard Collector service due to improper sanitization of user-supplied input. A local attacker can exploit this, via a specially crafted application, to execute arbitrary code with elevated system privileges.
SolutionMicrosoft has released a set of patches for Windows 10.