ID de Prueba:	1.3.6.1.4.1.25623.1.0.810851
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Monthly Rollup (KB4015549)
Resumen:	This host is missing a monthly rollup according; to Microsoft security update KB4015549.
Descripción:	Summary: This host is missing a monthly rollup according to Microsoft security update KB4015549. Vulnerability Insight: This security update includes improvements and resolves the following security vulnerabilities in Windows: scripting engine, Hyper-V, libjpeg image-processing library, Adobe Type Manager Font Driver, Win32K, Microsoft Outlook, Internet Explorer, Graphics Component, Windows kernel-mode drivers and Lightweight Directory Access Protocol. Vulnerability Impact: Successful exploitation will allow an attacker to execute code or elevate user privileges, take control of the affected system, and access information from one domain and inject it into another domain. Affected Software/OS: - Microsoft Windows 7 for 32-bit/x64 Systems Service Pack 1 - Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-6629 BugTraq ID: 63676 http://www.securityfocus.com/bid/63676 Debian Security Information: DSA-2799 (Google Search) http://www.debian.org/security/2013/dsa-2799 http://lists.fedoraproject.org/pipermail/package-announce/2013-December/123437.html http://lists.fedoraproject.org/pipermail/package-announce/2014-January/125470.html http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124108.html http://lists.fedoraproject.org/pipermail/package-announce/2013-December/124257.html http://archives.neohapsis.com/archives/fulldisclosure/2013-11/0080.html http://security.gentoo.org/glsa/glsa-201406-32.xml https://security.gentoo.org/glsa/201606-03 HPdes Security Advisory: HPSBUX03091 http://marc.info/?l=bugtraq&m=140852886808946&w=2 HPdes Security Advisory: HPSBUX03092 http://marc.info/?l=bugtraq&m=140852974709252&w=2 HPdes Security Advisory: SSRT101667 HPdes Security Advisory: SSRT101668 http://www.mandriva.com/security/advisories?name=MDVSA-2013:273 RedHat Security Advisories: RHSA-2013:1803 http://rhn.redhat.com/errata/RHSA-2013-1803.html RedHat Security Advisories: RHSA-2013:1804 http://rhn.redhat.com/errata/RHSA-2013-1804.html RedHat Security Advisories: RHSA-2014:0413 https://access.redhat.com/errata/RHSA-2014:0413 RedHat Security Advisories: RHSA-2014:0414 https://access.redhat.com/errata/RHSA-2014:0414 http://www.securitytracker.com/id/1029470 http://www.securitytracker.com/id/1029476 http://secunia.com/advisories/56175 http://secunia.com/advisories/58974 http://secunia.com/advisories/59058 SuSE Security Announcement: openSUSE-SU-2013:1776 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00025.html SuSE Security Announcement: openSUSE-SU-2013:1777 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-11/msg00026.html SuSE Security Announcement: openSUSE-SU-2013:1861 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00002.html SuSE Security Announcement: openSUSE-SU-2013:1916 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00085.html SuSE Security Announcement: openSUSE-SU-2013:1917 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00086.html SuSE Security Announcement: openSUSE-SU-2013:1918 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00087.html SuSE Security Announcement: openSUSE-SU-2013:1957 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00119.html SuSE Security Announcement: openSUSE-SU-2013:1958 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00120.html SuSE Security Announcement: openSUSE-SU-2013:1959 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00121.html SuSE Security Announcement: openSUSE-SU-2014:0008 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-01/msg00002.html SuSE Security Announcement: openSUSE-SU-2014:0065 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-01/msg00042.html http://www.ubuntu.com/usn/USN-2052-1 http://www.ubuntu.com/usn/USN-2053-1 http://www.ubuntu.com/usn/USN-2060-1 Common Vulnerability Exposure (CVE) ID: CVE-2017-0058 BugTraq ID: 97462 http://www.securityfocus.com/bid/97462 https://www.exploit-db.com/exploits/41879/ http://www.securitytracker.com/id/1038239 Common Vulnerability Exposure (CVE) ID: CVE-2017-0155 BugTraq ID: 97471 http://www.securityfocus.com/bid/97471 http://www.securitytracker.com/id/1038237 Common Vulnerability Exposure (CVE) ID: CVE-2017-0156 BugTraq ID: 97507 http://www.securityfocus.com/bid/97507 Common Vulnerability Exposure (CVE) ID: CVE-2017-0158 BugTraq ID: 97455 http://www.securityfocus.com/bid/97455 http://www.securitytracker.com/id/1038238 Common Vulnerability Exposure (CVE) ID: CVE-2017-0163 BugTraq ID: 97465 http://www.securityfocus.com/bid/97465 http://www.securitytracker.com/id/1038233 Common Vulnerability Exposure (CVE) ID: CVE-2017-0166 BugTraq ID: 97446 http://www.securityfocus.com/bid/97446 http://www.securitytracker.com/id/1038245 Common Vulnerability Exposure (CVE) ID: CVE-2017-0168 BugTraq ID: 97418 http://www.securityfocus.com/bid/97418 http://www.securitytracker.com/id/1038232 Common Vulnerability Exposure (CVE) ID: CVE-2017-0180 BugTraq ID: 97444 http://www.securityfocus.com/bid/97444 Common Vulnerability Exposure (CVE) ID: CVE-2017-0182 BugTraq ID: 97427 http://www.securityfocus.com/bid/97427 Common Vulnerability Exposure (CVE) ID: CVE-2017-0183 BugTraq ID: 97428 http://www.securityfocus.com/bid/97428 Common Vulnerability Exposure (CVE) ID: CVE-2017-0184 BugTraq ID: 97435 http://www.securityfocus.com/bid/97435 Common Vulnerability Exposure (CVE) ID: CVE-2017-0191 BugTraq ID: 97466 http://www.securityfocus.com/bid/97466 Common Vulnerability Exposure (CVE) ID: CVE-2017-0192 BugTraq ID: 97452 http://www.securityfocus.com/bid/97452 http://www.securitytracker.com/id/1038231 Common Vulnerability Exposure (CVE) ID: CVE-2017-0199 BugTraq ID: 97498 http://www.securityfocus.com/bid/97498 https://www.exploit-db.com/exploits/41894/ https://www.exploit-db.com/exploits/41934/ https://www.exploit-db.com/exploits/42995/ http://rewtin.blogspot.nl/2017/04/cve-2017-0199-practical-exploitation-poc.html https://blog.nviso.be/2017/04/12/analysis-of-a-cve-2017-0199-malicious-rtf-document/ https://ics-cert.us-cert.gov/advisories/ICSMA-18-058-02 https://www.fireeye.com/blog/threat-research/2017/04/cve-2017-0199_useda.html https://www.mdsec.co.uk/2017/04/exploiting-cve-2017-0199-hta-handler-vulnerability/ http://www.securitytracker.com/id/1038224 Common Vulnerability Exposure (CVE) ID: CVE-2017-0202 BugTraq ID: 97441 http://www.securityfocus.com/bid/97441 https://www.exploit-db.com/exploits/41941/ Common Vulnerability Exposure (CVE) ID: CVE-2017-0210 BugTraq ID: 97512 http://www.securityfocus.com/bid/97512
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.