New Search

Remote Desktop Protocol Drive Redirection Information Disclosure Vulnerability - CVE-2016-0190 (MS16-067)

oval:org.cisecurity:def:510

Volume Manager Driver in Microsoft Windows 8.1 Windows Server 2012 Gold and R2 and Windows RT 8.1 does not properly check whether RemoteFX RDP USB disk accesses originate from the user who mounted a disk which allows local users to read arbitrary files on these disks via RemoteFX requests aka "Remote Desktop Protocol Drive Redirection Information Disclosure Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 8.1
  • Microsoft Windows Server 2012
Class:
vulnerability
Reference(s):
  • CVE-2016-0190
Product(s):