ID de Prueba:	1.3.6.1.4.1.25623.1.0.903413
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Outlook Information Disclosure Vulnerability (2894514)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS13-094.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS13-094. Vulnerability Insight: The flaw is due to an error during the expansion of the S/MIME certificate metadata when validating the X.509 certificate chain and can be exploited to gain knowledge IP addresses and open TCP ports from the host and the connected LAN via a specially crafted S/MIME certificate sent in an email. Vulnerability Impact: Successful exploitation will allow remote attackers to disclose certain sensitive information. Affected Software/OS: - Microsoft Outlook 2013 - Microsoft Outlook 2007 Service Pack 3 and prior - Microsoft Outlook 2010 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-3905 Cert/CC Advisory: TA13-317A http://www.us-cert.gov/ncas/alerts/TA13-317A Microsoft Security Bulletin: MS13-094 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-094 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19239
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.