Windows : Microsoft Bulletins : Microsoft Windows XML Core Services Remote Code Execution Vulnerability (3148541)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.807539

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Windows XML Core Services Remote Code Execution Vulnerability (3148541)

Resumen: This host is missing a critical security; update according to Microsoft Bulletin MS15-040.

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS15-040.

Vulnerability Insight:
Flaw exists due to some unspecified error
when XML Core services parser processes user input.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to run malicious code remotely to take control of the user's system.

Affected Software/OS:
- Microsoft Windows 7 x32/x64 Edition Service Pack 1

- Microsoft Windows 8.1 x32/x64

- Microsoft Windows 10 x32/x64

- Microsoft Windows Server 2012

- Microsoft Windows Server 2012 R2

- Microsoft Windows Vista x32/x64 Edition Service Pack 2

- Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1

- Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-0147
Microsoft Security Bulletin: MS16-040
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-040
http://www.securitytracker.com/id/1035523

Copyright Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.807539
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows XML Core Services Remote Code Execution Vulnerability (3148541)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS15-040.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS15-040. Vulnerability Insight: Flaw exists due to some unspecified error when XML Core services parser processes user input. Vulnerability Impact: Successful exploitation will allow remote attackers to run malicious code remotely to take control of the user's system. Affected Software/OS: - Microsoft Windows 7 x32/x64 Edition Service Pack 1 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 10 x32/x64 - Microsoft Windows Server 2012 - Microsoft Windows Server 2012 R2 - Microsoft Windows Vista x32/x64 Edition Service Pack 2 - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-0147 Microsoft Security Bulletin: MS16-040 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-040 http://www.securitytracker.com/id/1035523
Copyright	Copyright (C) 2016 Greenbone AG