Windows : Microsoft Bulletins : Microsoft Windows Excel Viewer Remote Code Execution Vulnerabilities (3089664)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.806111

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Windows Excel Viewer Remote Code Execution Vulnerabilities (3089664)

Resumen: This host is missing an important security; update according to Microsoft Bulletin MS15-099.

Descripción: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS15-099.

Vulnerability Insight:
Multiple flaws exist when,

- Microsoft Excel improperly handles the loading of dynamic link library
(DLL) files.

- Error when memory is released in an unintended manner.

- Improper handling of files in the memory.

Vulnerability Impact:
Successful exploitation will allow a
context-dependent attacker to execute remote code.

Affected Software/OS:
Microsoft Excel Viewer 2007 Service Pack 3 and prior.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-2520
https://www.exploit-db.com/exploits/38215/
Microsoft Security Bulletin: MS15-099
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-099
http://www.securitytracker.com/id/1033488
Common Vulnerability Exposure (CVE) ID: CVE-2015-2521
https://www.exploit-db.com/exploits/38216/
Common Vulnerability Exposure (CVE) ID: CVE-2015-2523
https://www.exploit-db.com/exploits/38214/

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.806111
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Excel Viewer Remote Code Execution Vulnerabilities (3089664)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS15-099.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS15-099. Vulnerability Insight: Multiple flaws exist when, - Microsoft Excel improperly handles the loading of dynamic link library (DLL) files. - Error when memory is released in an unintended manner. - Improper handling of files in the memory. Vulnerability Impact: Successful exploitation will allow a context-dependent attacker to execute remote code. Affected Software/OS: Microsoft Excel Viewer 2007 Service Pack 3 and prior. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2520 https://www.exploit-db.com/exploits/38215/ Microsoft Security Bulletin: MS15-099 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-099 http://www.securitytracker.com/id/1033488 Common Vulnerability Exposure (CVE) ID: CVE-2015-2521 https://www.exploit-db.com/exploits/38216/ Common Vulnerability Exposure (CVE) ID: CVE-2015-2523 https://www.exploit-db.com/exploits/38214/
Copyright	Copyright (C) 2015 Greenbone AG