ID de Prueba:	1.3.6.1.4.1.25623.1.0.806168
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Web Apps Memory Corruption Vulnerability (3104540)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS15-116.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS15-116. Vulnerability Insight: Flaw exists as the application fails to properly sanitize the malicious crafted request. Vulnerability Impact: Successful exploitation will allow a context-dependent attacker to perform cross-site scripting attacks on affected systems and run script in the security context of the current user. Affected Software/OS: - Microsoft Office Web Apps 2010 Service Pack 2 and prior - Microsoft Office Web Apps Server 2013 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6093 BugTraq ID: 77491 http://www.securityfocus.com/bid/77491 http://www.zerodayinitiative.com/advisories/ZDI-15-539 Microsoft Security Bulletin: MS15-116 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-116 http://www.securitytracker.com/id/1034118 http://www.securitytracker.com/id/1034122
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.