ID de Prueba:	1.3.6.1.4.1.25623.1.0.805149
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Web Apps Multiple Vulnerabilities (3038999)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS15-022.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS15-022. Vulnerability Insight: Multiple flaws are due, - An use-after-free error that is triggered when handling a specially crafted office file. - User-supplied input is not properly validated when handling a specially crafted rich text format file. Vulnerability Impact: Successful exploitation will allow remote attacker to dereference already freed memory and potentially execute arbitrary code. Affected Software/OS: - Microsoft Office Web Apps Server Service on - Microsoft Office Web Apps 2010 Service Pack 2 and prior and Microsoft Office Web Apps 2013 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-0085 Microsoft Security Bulletin: MS15-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-022 http://www.securitytracker.com/id/1031896 Common Vulnerability Exposure (CVE) ID: CVE-2015-0086
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.