ID de Prueba:	1.3.6.1.4.1.25623.1.0.900299
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Report Viewer Information Disclosure Vulnerability (2578230)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS11-067.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS11-067. Vulnerability Insight: A flaw is due to an unspecified input passed to the Microsoft Report Viewer Control is not properly sanitised before being returned to the user. Vulnerability Impact: Successful exploitation will let the attacker execute arbitrary HTML and script code in a user's browser session in context of an affected site. Affected Software/OS: - Microsoft Visual Studio 2005 Service Pack 1 - Microsoft Report Viewer 2005 Service Pack 1 Re-distributable Package Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1976 BugTraq ID: 49033 http://www.securityfocus.com/bid/49033 Cert/CC Advisory: TA11-221A http://www.us-cert.gov/cas/techalerts/TA11-221A.html HPdes Security Advisory: HPSBGN03534 http://marc.info/?l=bugtraq&m=145326307707460&w=2 Microsoft Security Bulletin: MS11-067 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-067 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12773
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.