ID de Prueba:	1.3.6.1.4.1.25623.1.0.903300
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Internet Explorer Multiple Vulnerabilities (2792100)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS13-009.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS13-009. Vulnerability Insight: The following vulnerabilities exist: - An error when handling the encoding for Shift_JIS auto-selection can be exploited to gain access to information in another domain or Internet Explorer zone. - Multiple use-after-free errors related to: - SetCapture - COmWindowProxy - CMarkup - vtable - LsGetTrailInfo - CDispNode - pasteHTML - SLayoutRun - InsertElement - CPasteCommand - CObjectElement - CHTML. Vulnerability Impact: Successful exploitation will allow the attackers to gain information of another domain or Internet Explorer zone and execution of arbitrary code. Affected Software/OS: Microsoft Internet Explorer version 6.x/7.x/8.x/9.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0015 Cert/CC Advisory: TA13-043B http://www.us-cert.gov/cas/techalerts/TA13-043B.html Microsoft Security Bulletin: MS13-009 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-009 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16371 Common Vulnerability Exposure (CVE) ID: CVE-2013-0018 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16438 Common Vulnerability Exposure (CVE) ID: CVE-2013-0019 https://www.exploit-db.com/exploits/40879/ http://blog.skylined.nl/20161202001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16465 Common Vulnerability Exposure (CVE) ID: CVE-2013-0020 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15875 Common Vulnerability Exposure (CVE) ID: CVE-2013-0021 https://lists.apache.org/thread.html/r1c07a561426ec5579073046ad7f4207cdcef452bb3100abaf908e0cd@%3Ccommits.santuario.apache.org%3E https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16483 Common Vulnerability Exposure (CVE) ID: CVE-2013-0022 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16069 Common Vulnerability Exposure (CVE) ID: CVE-2013-0023 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16470 Common Vulnerability Exposure (CVE) ID: CVE-2013-0024 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16126 Common Vulnerability Exposure (CVE) ID: CVE-2013-0025 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16294 Common Vulnerability Exposure (CVE) ID: CVE-2013-0026 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16472 Common Vulnerability Exposure (CVE) ID: CVE-2013-0027 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16360 Common Vulnerability Exposure (CVE) ID: CVE-2013-0028 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16249 Common Vulnerability Exposure (CVE) ID: CVE-2013-0029 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16245
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.