Elevation of privilege vulnerability in Web Proxy Auto Discovery (WPAD) protocol - CVE-2016-3236ID: oval:org.secpod.oval:def:35615 | Date: (C)2016-06-16 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
The host is installed with Windows Vista SP2, Server 2008 SP2, Windows 7 SP1, Server 2008 R2 SP1, Server 2012, Windows 8.1, Server 2012 R2 or Windows 10 and is prone to an elevation of privilege vulnerability. A flaw is present in the application, which improperly handle certain proxy discovery scenarios using the Web Proxy Auto Discovery (WPAD) protocol method. Successful exploitation allows remote attackers to potentially access and control network traffic for which the attacker does not have sufficient privileges.
Platform: |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |
Microsoft Windows 7 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Server 2012 |
Microsoft Windows 8.1 |
Microsoft Windows 10 |
Microsoft Windows Server 2012 R2 |