ID de Prueba:	1.3.6.1.4.1.25623.1.0.900266
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Movie Maker Could Allow Remote Code Execution Vulnerability (2424434)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS10-093.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS10-093. Vulnerability Insight: The flaw is due to Windows Movie Maker incorrectly restricting the path used for loading external libraries. Vulnerability Impact: Successful exploitation will allow remote attackers to load crafted DLL file and execute any code it contained. Affected Software/OS: Movie Maker 2.6 on Microsoft Windows Vista Service Pack 1/2 and prior. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3967 Cert/CC Advisory: TA10-348A http://www.us-cert.gov/cas/techalerts/TA10-348A.html Microsoft Security Bulletin: MS10-093 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-093 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12250 http://www.securitytracker.com/id?1024875 http://secunia.com/advisories/42607 http://www.vupen.com/english/advisories/2010/3216
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.