ID de Prueba:	1.3.6.1.4.1.25623.1.0.901219
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Lync Server Remote Code Execution Vulnerability (2834695)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS13-041.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS13-041. Vulnerability Insight: A use-after-free error within the Lync control can be exploited to dereference already freed memory. Vulnerability Impact: Successful exploitation could allow an attacker could execute arbitrary code in the context of the current user by sharing specially crafted content, such as a file or a program, as a presentation in a Lync or Communicator session and then convince a user to view or share the specially crafted content. Affected Software/OS: Microsoft Lync Server 2013 (Web Components Server). Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-1302 Cert/CC Advisory: TA13-134A http://www.us-cert.gov/ncas/alerts/TA13-134A Microsoft Security Bulletin: MS13-041 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-041 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15952
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.