Windows : Microsoft Bulletins : Microsoft Internet Explorer Multiple Vulnerabilities (3198467)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.809715

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Internet Explorer Multiple Vulnerabilities (3198467)

Resumen: This host is missing a critical security; update according to Microsoft Bulletin MS16-142.

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS16-142.

Vulnerability Insight:
Multiple flaws exist due to:

- Multiple errors due to improper way of accessing objects in memory.

- An error in XSS filter which can be abused to leak sensitive page information.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to gain access to potentially sensitive files and execute arbitrary
code on the affected system.

Affected Software/OS:
Microsoft Internet Explorer version 9.x/10.x/11.x.

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
7.6

CVSS Vector:
AV:N/AC:H/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2016-7195
BugTraq ID: 94052
http://www.securityfocus.com/bid/94052
Microsoft Security Bulletin: MS16-129
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-129
Microsoft Security Bulletin: MS16-142
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-142
http://www.securitytracker.com/id/1037245
Common Vulnerability Exposure (CVE) ID: CVE-2016-7196
BugTraq ID: 94051
http://www.securityfocus.com/bid/94051
Common Vulnerability Exposure (CVE) ID: CVE-2016-7198
BugTraq ID: 94053
http://www.securityfocus.com/bid/94053
Common Vulnerability Exposure (CVE) ID: CVE-2016-7199
BugTraq ID: 94057
http://www.securityfocus.com/bid/94057
Common Vulnerability Exposure (CVE) ID: CVE-2016-7227
BugTraq ID: 94065
http://www.securityfocus.com/bid/94065
Common Vulnerability Exposure (CVE) ID: CVE-2016-7239
BugTraq ID: 94059
http://www.securityfocus.com/bid/94059
Common Vulnerability Exposure (CVE) ID: CVE-2016-7241
BugTraq ID: 94055
http://www.securityfocus.com/bid/94055
https://www.exploit-db.com/exploits/40875/
http://packetstormsecurity.com/files/139991/Microsoft-Edge-JSON.parse-Information-Leak.html
https://bugs.chromium.org/p/project-zero/issues/detail?id=952

Copyright Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.809715
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Internet Explorer Multiple Vulnerabilities (3198467)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS16-142.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-142. Vulnerability Insight: Multiple flaws exist due to: - Multiple errors due to improper way of accessing objects in memory. - An error in XSS filter which can be abused to leak sensitive page information. Vulnerability Impact: Successful exploitation will allow remote attackers to gain access to potentially sensitive files and execute arbitrary code on the affected system. Affected Software/OS: Microsoft Internet Explorer version 9.x/10.x/11.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.6 CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7195 BugTraq ID: 94052 http://www.securityfocus.com/bid/94052 Microsoft Security Bulletin: MS16-129 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-129 Microsoft Security Bulletin: MS16-142 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-142 http://www.securitytracker.com/id/1037245 Common Vulnerability Exposure (CVE) ID: CVE-2016-7196 BugTraq ID: 94051 http://www.securityfocus.com/bid/94051 Common Vulnerability Exposure (CVE) ID: CVE-2016-7198 BugTraq ID: 94053 http://www.securityfocus.com/bid/94053 Common Vulnerability Exposure (CVE) ID: CVE-2016-7199 BugTraq ID: 94057 http://www.securityfocus.com/bid/94057 Common Vulnerability Exposure (CVE) ID: CVE-2016-7227 BugTraq ID: 94065 http://www.securityfocus.com/bid/94065 Common Vulnerability Exposure (CVE) ID: CVE-2016-7239 BugTraq ID: 94059 http://www.securityfocus.com/bid/94059 Common Vulnerability Exposure (CVE) ID: CVE-2016-7241 BugTraq ID: 94055 http://www.securityfocus.com/bid/94055 https://www.exploit-db.com/exploits/40875/ http://packetstormsecurity.com/files/139991/Microsoft-Edge-JSON.parse-Information-Leak.html https://bugs.chromium.org/p/project-zero/issues/detail?id=952
Copyright	Copyright (C) 2016 Greenbone AG