ID de Prueba:	1.3.6.1.4.1.25623.1.0.804670
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft DirectShow Elevation of Privileges Vulnerability (2975681)
Resumen:	This host is missing an important security update according to Microsoft;Bulletin MS14-041.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS14-041. Vulnerability Insight: Flaw is due to an error in the way DirectShow handles objects in the memory. Vulnerability Impact: Successful exploitation will allow attackers to gain elevated privileges, execute code within the context of the logged on user and take complete control of an affected system. Affected Software/OS: - Microsoft Windows Vista x32/x64 Service Pack 2 and prior - Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior - Microsoft Windows 7 x32/x64 Service Pack 1 and prior - Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior - Microsoft Windows 8 x32/x64 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012 - Microsoft Windows Server 2012 R2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-2780 BugTraq ID: 68392 http://www.securityfocus.com/bid/68392 Bugtraq: 20140716 VUPEN Security Research - Microsoft Windows "DirectShow" Privilege Escalation Vulnerability (Pwn2Own 2014) (Google Search) http://www.securityfocus.com/archive/1/532800/100/0/threaded Microsoft Security Bulletin: MS14-041 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-041
Copyright	Copyright (C) 2014 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.