Test Kennung:	1.3.6.1.4.1.25623.1.0.805028
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Office Web Apps Remote Code Execution Vulnerabilities (3017301)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft Bulletin MS14-081.
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS14-081. Vulnerability Insight: The flaws are due to: - An invalid indexing error when parsing Office files can be exploited to execute arbitrary code via a specially crafted Office file. - A use-after-free error when parsing Office files can be exploited to execute arbitrary code via a specially crafted Office file. Vulnerability Impact: Successful exploitation will allow remote attackers to execute the arbitrary code, cause memory corruption and compromise the system. Affected Software/OS: - Microsoft Web Applications 2010 Service Pack 2 and prior - Microsoft Web Applications 2013 Service Pack 1 and prior - Microsoft Office Compatibility Pack SP3 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-6356 Microsoft Security Bulletin: MS14-081 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-081 Common Vulnerability Exposure (CVE) ID: CVE-2014-6357
Copyright	Copyright (C) 2014 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.