Medium severity5.3NVD Advisory· Published Aug 9, 2016· Updated Jun 17, 2026
CVE-2016-3299
CVE-2016-3299
Description
Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allow remote attackers to hijack network traffic or bypass intended Enhanced Protected Mode (EPM) or application container protection mechanisms, and consequently render untrusted content in a browser, by leveraging how NetBIOS validates responses, aka "NetBIOS Spoofing Vulnerability."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1511:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
- (no CPE)range: Gold, 1511
cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_8.1:*:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:microsoft:windows_rt_8.1:*:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*
- (no CPE)range: SP2, R2 SP1
cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:microsoft:windows_server_2012:-:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_server_2012:r2:*:*:*:*:*:*:*
- (no CPE)range: Gold, R2
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.