Test ID:	1.3.6.1.4.1.25623.1.0.902334
Category:	Windows : Microsoft Bulletins
Title:	Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185)
Summary:	This host is missing a critical security update according to; Microsoft Bulletin MS11-006.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS11-006. Vulnerability Insight: The flaw is due to a signedness error in the 'CreateSizedDIBSECTION()' function within the Windows Shell graphics processor when parsing thumbnail bitmaps. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code by tricking a user into opening or previewing a malformed Office file or browsing to a network share, UNC, or WebDAV location containing a specially crafted thumbnail image. Affected Software/OS: - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows 2K3 Service Pack 2 and prior - Microsoft Windows Vista Service Pack 2 and prior - Microsoft Windows Server 2008 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3970 BugTraq ID: 45662 http://www.securityfocus.com/bid/45662 CERT/CC vulnerability note: VU#106516 http://www.kb.cert.org/vuls/id/106516 http://blogs.technet.com/b/srd/archive/2011/01/07/assessing-the-risk-of-public-issues-currently-being-tracked-by-the-msrc.aspx http://www.metasploit.com/redmine/projects/framework/repository/revisions/11466/entry/modules/exploits/windows/fileformat/ms11_xxx_createsizeddibsection.rb http://www.microsoft.com/technet/security/advisory/2490606.mspx http://www.powerofcommunity.net/speaker.html Microsoft Security Bulletin: MS11-006 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-006 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11671 http://www.securitytracker.com/id?1024932 http://secunia.com/advisories/42779 http://www.vupen.com/english/advisories/2011/0018 Common Vulnerability Exposure (CVE) ID: CVE-2011-0347 Bugtraq: 20110101 Announcing cross_fuzz, a potential 0-day in circulation, and more (Google Search) http://www.securityfocus.com/archive/1/515506/100/0/threaded http://archives.neohapsis.com/archives/fulldisclosure/2010-12/0698.html http://lcamtuf.blogspot.com/2011/01/announcing-crossfuzz-potential-0-day-in.html http://lcamtuf.coredump.cx/cross_fuzz/fuzzer_timeline.txt http://lcamtuf.coredump.cx/cross_fuzz/msie_display.jpg https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12514 XForce ISS Database: ms-ie-gui-weak-security(64571) https://exchange.xforce.ibmcloud.com/vulnerabilities/64571
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.