Windows : Microsoft Bulletins : Microsoft Windows Multiple Vulnerabilities (3199172)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.809465

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Windows Multiple Vulnerabilities (3199172)

Resumen: This host is missing a critical security; update according to Microsoft Bulletin MS16-130.

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS16-130.

Vulnerability Insight:
Multiple flaws exist due to

- The Windows Input Method Editor (IME) improperly handles DLL loading.

- The Windows Task Scheduler improperly schedule a new task.

- The Windows image file loading functionality does not properly handle
malformed image files.

Vulnerability Impact:
Successful exploitation will allow an attacker
to run arbitrary code with elevated system privileges or run a specially
crafted application.

Affected Software/OS:
- Microsoft Windows Vista x32/x64 Service Pack 2

- Microsoft Windows Server 2008 x32/x64 Service Pack 2

- Microsoft Windows 7 x32/x64 Service Pack 1

- Microsoft Windows Server 2008 R2 x64 Service Pack 1

- Microsoft Windows 8.1 x32/x64

- Microsoft Windows Server 2012/2012R2

- Microsoft Windows 10 x32/x64

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-7221
BugTraq ID: 94021
http://www.securityfocus.com/bid/94021
Microsoft Security Bulletin: MS16-130
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-130
http://www.securitytracker.com/id/1037241
Common Vulnerability Exposure (CVE) ID: CVE-2016-7222
BugTraq ID: 94023
http://www.securityfocus.com/bid/94023
Common Vulnerability Exposure (CVE) ID: CVE-2016-7212
BugTraq ID: 94027
http://www.securityfocus.com/bid/94027

Copyright Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.809465
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Multiple Vulnerabilities (3199172)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS16-130.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-130. Vulnerability Insight: Multiple flaws exist due to - The Windows Input Method Editor (IME) improperly handles DLL loading. - The Windows Task Scheduler improperly schedule a new task. - The Windows image file loading functionality does not properly handle malformed image files. Vulnerability Impact: Successful exploitation will allow an attacker to run arbitrary code with elevated system privileges or run a specially crafted application. Affected Software/OS: - Microsoft Windows Vista x32/x64 Service Pack 2 - Microsoft Windows Server 2008 x32/x64 Service Pack 2 - Microsoft Windows 7 x32/x64 Service Pack 1 - Microsoft Windows Server 2008 R2 x64 Service Pack 1 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 x32/x64 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7221 BugTraq ID: 94021 http://www.securityfocus.com/bid/94021 Microsoft Security Bulletin: MS16-130 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-130 http://www.securitytracker.com/id/1037241 Common Vulnerability Exposure (CVE) ID: CVE-2016-7222 BugTraq ID: 94023 http://www.securityfocus.com/bid/94023 Common Vulnerability Exposure (CVE) ID: CVE-2016-7212 BugTraq ID: 94027 http://www.securityfocus.com/bid/94027
Copyright	Copyright (C) 2016 Greenbone AG