ID de Prueba:	1.3.6.1.4.1.25623.1.0.811855
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft SharePoint Server 2010 Service Pack 2 Word Automation Services RCE Vulnerability (KB3213623)
Resumen:	This host is missing an important security; update according to Microsoft KB3213623
Descripción:	Summary: This host is missing an important security update according to Microsoft KB3213623 Vulnerability Insight: The flaw exists when Microsoft Office software fails to properly handle objects in memory. Vulnerability Impact: Successful exploitation will allow an attacker who successfully exploited the vulnerability to run arbitrary code in the context of the current user. Affected Software/OS: Microsoft SharePoint Server 2010 Service Pack 2 Word Automation Services. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11826 BugTraq ID: 101219 http://www.securityfocus.com/bid/101219 https://0patch.blogspot.com/2017/11/0patching-pretty-nasty-microsoft-word.html https://securingtomorrow.mcafee.com/mcafee-labs/analyzing-microsoft-office-zero-day-exploit-cve-2017-11826-memory-corruption-vulnerability/ https://www.tarlogic.com/en/blog/exploiting-word-cve-2017-11826/ http://www.securitytracker.com/id/1039541
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.