ID de Prueba:	1.3.6.1.4.1.25623.1.0.807306
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Web Apps Memory Corruption Vulnerabilities (3134226)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS16-015.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-015. Vulnerability Insight: Flaw exists as the application fails to properly sanitize the malicious crafted request. Vulnerability Impact: Successful exploitation will allow a context-dependent attacker to perform cross-site scripting attacks on affected systems and run script in the security context of the current user. Affected Software/OS: - Microsoft Office Web Apps 2010 Service Pack 2 and prior - Microsoft Office Web Apps Server 2013 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0022 Microsoft Security Bulletin: MS16-015 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-015 http://www.securitytracker.com/id/1034975 http://www.securitytracker.com/id/1034976 Common Vulnerability Exposure (CVE) ID: CVE-2016-0052 Common Vulnerability Exposure (CVE) ID: CVE-2016-0053 Common Vulnerability Exposure (CVE) ID: CVE-2016-0039
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.