ID de Prueba:	1.3.6.1.4.1.25623.1.0.807842
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Visio Remote Code Execution Vulnerability (3163610)
Resumen:	This host is missing an important security; update according to Microsoft Bulletin MS16-070
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS16-070 Vulnerability Insight: The flaw exists due to error within Office software when Windows improperly validates input before loading libraries. Vulnerability Impact: Successful exploitation will allow remote attackers to run arbitrary code in the context of the current user and to perform actions in the security context of the current user. Affected Software/OS: - Microsoft Visio 2007 - Microsoft Visio 2010 - Microsoft Visio 2013 - Microsoft Visio 2016 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-3235 Bugtraq: 20160615 Microsoft Visio multiple DLL side loading vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/538685/100/0/threaded http://seclists.org/fulldisclosure/2016/Jun/32 http://packetstormsecurity.com/files/137490/Microsoft-Visio-DLL-Hijacking.html https://www.securify.nl/advisory/SFY20150804/microsoft_visio_multiple_dll_side_loading_vulnerabilities.html Microsoft Security Bulletin: MS16-070 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-070 http://www.securitytracker.com/id/1036093
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.