ID de Prueba:	1.3.6.1.4.1.25623.1.0.902495
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Remote Code Execution Vulnerability (2590602)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS11-089.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS11-089. Vulnerability Insight: The flaw is due to a use-after-free error when parsing Word documents and can be exploited to dereference already freed memory. Vulnerability Impact: Successful exploitation could allow attackers to execute arbitrary code as the logged-on user. Affected Software/OS: - Microsoft Office 2007 Service Pack 3 and prior - Microsoft Office 2010 Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1983 Cert/CC Advisory: TA11-347A http://www.us-cert.gov/cas/techalerts/TA11-347A.html Microsoft Security Bulletin: MS11-089 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-089 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14197 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14558 http://www.securitytracker.com/id?1026409
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.