Test Kennung:	1.3.6.1.4.1.25623.1.0.804450
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office Remote Code Execution Vulnerabilities (2961037)
Zusammenfassung:	This host is missing an important security update according to; Microsoft Bulletin MS14-023.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS14-023. Vulnerability Insight: - The flaw is due to the Grammar Checker feature for Chinese (Simplified) loading libraries in an insecure manner. - An error when handling a certain response can be exploited to gain knowledge of access tokens used for authentication of the current user. Vulnerability Impact: Successful exploitation will allow remote attackers to execute the arbitrary code. Affected Software/OS: - Microsoft Office 2007 Service Pack 3 (proofing tools) - Microsoft Office 2010 Service Pack 2 (proofing tools) and prior - Microsoft Office 2013 Service Pack 1 (proofing tools) and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1756 Microsoft Security Bulletin: MS14-023 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-023 Common Vulnerability Exposure (CVE) ID: CVE-2014-1808
Copyright	Copyright (C) 2014 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.