ID de Prueba:	1.3.6.1.4.1.25623.1.0.902910
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Visio Viewer Remote Code Execution Vulnerability (2597981)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS12-031.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS12-031. Vulnerability Insight: The flaw is due to an error when validating certain attributes within a 'VSD' file format and can be exploited to corrupt memory via a specially crafted Visio file. Vulnerability Impact: Successful exploitation could allow attackers to gain same user rights as the logged on user and execute arbitrary code. Affected Software/OS: Microsoft Visio Viewer 2010 Service Pack 1 and prior. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0018 BugTraq ID: 53328 http://www.securityfocus.com/bid/53328 Cert/CC Advisory: TA12-129A http://www.us-cert.gov/cas/techalerts/TA12-129A.html Microsoft Security Bulletin: MS12-031 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-031 http://osvdb.org/81731 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15606 http://www.securitytracker.com/id?1027042 http://secunia.com/advisories/49113 XForce ISS Database: visio-memory-code-exec(75115) https://exchange.xforce.ibmcloud.com/vulnerabilities/75115
Copyright	Copyright (C) 2012 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.