 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.902697 |
| Categoría: | Windows : Microsoft Bulletins |
| Título: | Microsoft Exchange Server Remote Code Execution Vulnerabilities (2784126) |
| Resumen: | This host is missing a critical security update according to; Microsoft Bulletin MS12-080. |
| Descripción: | Summary: This host is missing a critical security update according to Microsoft Bulletin MS12-080. Vulnerability Insight: The flaws are due to - Error in the WebReady Document Viewing when used to preview a specially crafted file through Outlook Web Access. - Improper handling of RSS feeds rendering the Information Store service unresponsive until the process is forcibly terminated and corrupt the databases. Vulnerability Impact: Successful exploitation could allow an attacker to cause a denial of service condition or run arbitrary code as LocalService on the affected Exchange server. Affected Software/OS: - Microsoft Exchange Server 2007 Service Pack 3 - Microsoft Exchange Server 2010 Service Pack 1 - Microsoft Exchange Server 2010 Service Pack 2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2012-3214 Cert/CC Advisory: TA12-346A http://www.us-cert.gov/cas/techalerts/TA12-346A.html Cert/CC Advisory: TA13-043B http://www.us-cert.gov/cas/techalerts/TA13-043B.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 Microsoft Security Bulletin: MS12-080 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-080 Microsoft Security Bulletin: MS13-013 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-013 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16178 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16500 Common Vulnerability Exposure (CVE) ID: CVE-2012-3217 http://osvdb.org/86392 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15911 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16080 Common Vulnerability Exposure (CVE) ID: CVE-2012-4791 BugTraq ID: 56836 http://www.securityfocus.com/bid/56836 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16158 |
| Copyright | Copyright (C) 2012 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |