You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
ms16-138
About this tag
MS16-138 is a Microsoft security bulletin published on November 8, 2016, addressing an important vulnerability in the Windows Virtual Hard Disk Driver. The flaw, identified as CVE-2016-7257, could allow an attacker to improperly access files by manipulating the driver's handling of user access. This security update, referenced as KB3199647, resolves the issue by correcting how the driver manages file access. Users are advised to apply the update to prevent potential unauthorized file manipulation. The bulletin is part of Microsoft's regular security release cycle and is relevant for systems running affected versions of Windows.
Severity Rating: Important
Revision Note: V1.0 (November 8, 2016): Bulletin published.
Summary: The Windows Virtual Hard Disk Driver improperly handles user access to certain files. An attacker can manipulate files in locations not intended to be available to the user by exploiting this...