Test ID:	1.3.6.1.4.1.25623.1.0.902484
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows TCP/IP Remote Code Execution Vulnerability (2588516)
Summary:	This host is missing a critical security update according to; Microsoft Bulletin MS11-083.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS11-083. Vulnerability Insight: The flaw is due to an integer overflow error in the TCP/IP implementation when parsing UDP traffic and which can be exploited via a continuous flow of specially crafted UDP datagrams sent to a closed port. Vulnerability Impact: Successful exploitation could allow remote attacker to execute the arbitrary code in kernel mode. An attacker could then install programs, view, change, delete data or create new accounts with full user rights. Affected Software/OS: - Microsoft Windows 7 Service Pack 1 and prior - Microsoft Windows Vista Service Pack 2 and prior - Microsoft Windows Server 2008 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2013 Microsoft Security Bulletin: MS11-083 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-083 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13877 http://www.securitytracker.com/id?1026290
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.