ID de Prueba:	1.3.6.1.4.1.25623.1.0.810654
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft IE And Microsoft Edge Flash Player Multiple Vulnerabilities (3157993)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS16-064.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-064. Vulnerability Insight: Multiple flaws exist due to: - Multiple type confusion vulnerabilities. - Multiple use-after-free vulnerabilities. - A heap buffer overflow vulnerability. - A buffer overflow vulnerability. - Multiple memory corruption vulnerabilities. - A vulnerability in the directory search path used to find resources. Vulnerability Impact: Successful exploitation of this vulnerability will allow remote attackers to execute arbitrary code and also some unknown impact. Affected Software/OS: - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 x32/x64 - Microsoft Windows 10 Version 1511 x32/x64 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1096 BugTraq ID: 90618 http://www.securityfocus.com/bid/90618 https://www.exploit-db.com/exploits/39828/ http://packetstormsecurity.com/files/137051/Adobe-Flash-MP4-File-Stack-Corruption.html Microsoft Security Bulletin: MS16-064 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-064 RedHat Security Advisories: RHSA-2016:1079 http://rhn.redhat.com/errata/RHSA-2016-1079.html http://www.securitytracker.com/id/1035827 SuSE Security Announcement: SUSE-SU-2016:1305 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00044.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1097 Common Vulnerability Exposure (CVE) ID: CVE-2016-1098 Common Vulnerability Exposure (CVE) ID: CVE-2016-1099 Common Vulnerability Exposure (CVE) ID: CVE-2016-1100 Common Vulnerability Exposure (CVE) ID: CVE-2016-1101 https://www.exploit-db.com/exploits/39827/ http://packetstormsecurity.com/files/137052/Adobe-Flash-ATF-Processing-Heap-Overflow.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1102 https://www.exploit-db.com/exploits/39824/ http://packetstormsecurity.com/files/137053/Adobe-Flash-JXR-Processing-Out-Of-Bounds-Read.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1103 https://www.exploit-db.com/exploits/39826/ http://packetstormsecurity.com/files/137054/Adobe-Flash-Raw-565-Texture-Processing-Overflow.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1104 https://www.exploit-db.com/exploits/39825/ http://packetstormsecurity.com/files/137055/Adobe-Flash-Object-Placing-Out-Of-Bounds-Read.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1105 https://www.exploit-db.com/exploits/39829/ http://packetstormsecurity.com/files/137056/Adobe-Flash-FileReference-Type-Confusion.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1106 https://www.exploit-db.com/exploits/39831/ http://packetstormsecurity.com/files/137057/Adobe-Flash-SetNative-Use-After-Free.html Common Vulnerability Exposure (CVE) ID: CVE-2016-1107 Common Vulnerability Exposure (CVE) ID: CVE-2016-1108 Common Vulnerability Exposure (CVE) ID: CVE-2016-1109 Common Vulnerability Exposure (CVE) ID: CVE-2016-1110 Common Vulnerability Exposure (CVE) ID: CVE-2016-4108 https://www.exploit-db.com/exploits/39830/ http://packetstormsecurity.com/files/137058/Adobe-Flash-addProperty-Use-After-Free.html Common Vulnerability Exposure (CVE) ID: CVE-2016-4109 Common Vulnerability Exposure (CVE) ID: CVE-2016-4110 Common Vulnerability Exposure (CVE) ID: CVE-2016-4111 Common Vulnerability Exposure (CVE) ID: CVE-2016-4112 Common Vulnerability Exposure (CVE) ID: CVE-2016-4113 Common Vulnerability Exposure (CVE) ID: CVE-2016-4114 Common Vulnerability Exposure (CVE) ID: CVE-2016-4115 Common Vulnerability Exposure (CVE) ID: CVE-2016-4116 Common Vulnerability Exposure (CVE) ID: CVE-2016-4117 BugTraq ID: 90505 http://www.securityfocus.com/bid/90505 https://www.exploit-db.com/exploits/46339/ https://security.gentoo.org/glsa/201606-08 http://www.securitytracker.com/id/1035826 SuSE Security Announcement: openSUSE-SU-2016:1306 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00045.html SuSE Security Announcement: openSUSE-SU-2016:1308 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00046.html SuSE Security Announcement: openSUSE-SU-2016:1309 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2016-05/msg00047.html Common Vulnerability Exposure (CVE) ID: CVE-2016-4120 Common Vulnerability Exposure (CVE) ID: CVE-2016-4121 BugTraq ID: 90797 http://www.securityfocus.com/bid/90797 Common Vulnerability Exposure (CVE) ID: CVE-2016-4160 Common Vulnerability Exposure (CVE) ID: CVE-2016-4161 Common Vulnerability Exposure (CVE) ID: CVE-2016-4162 Common Vulnerability Exposure (CVE) ID: CVE-2016-4163
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.