Vulnerability Details CVE-2016-3312
ActiveSyncProvider in Microsoft Windows 10 Gold and 1511 allows attackers to discover credentials by leveraging failure of Universal Outlook to obtain a secure connection, aka "Universal Outlook Information Disclosure Vulnerability."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.143
EPSS Ranking 94.1%
CVSS Severity
CVSS v3 Score 9.1
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/92307
- http://www.securitytracker.com/id/1036577
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-103
- http://www.securityfocus.com/bid/92307
- http://www.securitytracker.com/id/1036577
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-103
Products affected by CVE-2016-3312
-
cpe:2.3:o:microsoft:windows_10:-
-
cpe:2.3:o:microsoft:windows_10:1511