ID de Prueba:	1.3.6.1.4.1.25623.1.0.806187
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Exchange Server Address Spoofing Vulnerabilities (3124557)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS16-010.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS16-010. Vulnerability Insight: Multiple spoofing vulnerabilities exist in Microsoft Exchange Server when Outlook Web Access (OWA) fails to properly handle web requests. Vulnerability Impact: Successful exploitation will allow remote attackers to perform script or content injection attacks, and attempt to trick the user into disclosing sensitive information. Affected Software/OS: - Microsoft Exchange Server 2016 - Microsoft Exchange Server 2013 SP1 - Microsoft Exchange Server 2013 Cumulative Update 10 and - Microsoft Exchange Server 2013 Cumulative Update 11 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0029 BugTraq ID: 79889 http://www.securityfocus.com/bid/79889 Microsoft Security Bulletin: MS16-010 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-010 http://www.securitytracker.com/id/1034647 Common Vulnerability Exposure (CVE) ID: CVE-2016-0030 BugTraq ID: 79890 http://www.securityfocus.com/bid/79890 Common Vulnerability Exposure (CVE) ID: CVE-2016-0031 BugTraq ID: 79888 http://www.securityfocus.com/bid/79888 Common Vulnerability Exposure (CVE) ID: CVE-2016-0032 BugTraq ID: 79884 http://www.securityfocus.com/bid/79884
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.