漏洞类别:Windows
漏洞等级: 
漏洞信息
This security update resolves elevation of privilege vulnerabilities in Microsoft Windows Input Method Editor (IME) and the Windows Task Scheduler. This security update is rated Critical for all supported releases of Microsoft Windows. The security update addresses the vulnerabilities by: Correcting how the Windows Input Method Editor (IME) loads DLLs.
Requiring hardened UNC paths be used in scheduled tasks.
漏洞危害
An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges.
解决方案
Customers are advised to refer to Microsoft Security Bulletin MS16-130 for details.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论