Anfälligkeitssuche        Suche in 324607 CVE Beschreibungen
und 145615 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.805147
Kategorie:Windows : Microsoft Bulletins
Titel:Microsoft SharePoint Server WAS Multiple Vulnerabilities (3038999)
Zusammenfassung:This host is missing an important security; update according to Microsoft Bulletin MS15-022.
Beschreibung:Summary:
This host is missing an important security
update according to Microsoft Bulletin MS15-022.

Vulnerability Insight:
Multiple flaws are due,

- An use-after-free error that is triggered when handling a specially crafted
office file.

- User-supplied input is not properly validated when handling a specially
crafted rich text format file.

Vulnerability Impact:
Successful exploitation will allow remote
attacker to dereference already freed memory and potentially execute
arbitrary code.

Affected Software/OS:
- Microsoft SharePoint Server 2010 Word Automation Services Service Pack 2 and prior

- Microsoft SharePoint Server 2013 Word Automation Services Service Pack 1 and prior

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-0085
Microsoft Security Bulletin: MS15-022
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-022
http://www.securitytracker.com/id/1031896
Common Vulnerability Exposure (CVE) ID: CVE-2015-0086
CopyrightCopyright (C) 2015 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2025 E-Soft Inc. Alle Rechte vorbehalten.