ID de Prueba:	1.3.6.1.4.1.25623.1.0.903431
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Direct2D Remote Code Execution Vulnerability (2912390)
Resumen:	This host is missing a critical security update according to Microsoft; Bulletin MS14-007.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS14-007. Vulnerability Insight: The flaw is due to an unspecified error within Direct2D when handling specially crafted 2D geometric figures and can be exploited to cause memory corruption. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code and take complete control of an affected system. Affected Software/OS: - Microsoft Windows 8 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012 - Microsoft Windows 7 x32/x64 Service Pack 1 and prior - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0263 BugTraq ID: 65393 http://www.securityfocus.com/bid/65393 Microsoft Security Bulletin: MS14-007 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-007 http://osvdb.org/103160 http://www.securitytracker.com/id/1029743 http://secunia.com/advisories/56781
Copyright	Copyright (C) 2014 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.