Test ID:	1.3.6.1.4.1.25623.1.0.804441
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Internet Explorer Remote Code Execution Vulnerability (2965111)
Summary:	This host is missing a critical security update according to Microsoft; Bulletin MS14-021.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS14-021. Vulnerability Insight: The flaw exists in the way that Internet Explorer accesses an object in memory that has been deleted or has not been properly allocated. Vulnerability Impact: Successful exploitation will allow attackers to corrupt memory by the execution of arbitrary code in the context of the current user. Affected Software/OS: Microsoft Internet Explorer version 6.x/7.x/8.x/9.x/10.x/11.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1776 BugTraq ID: 67075 http://www.securityfocus.com/bid/67075 CERT/CC vulnerability note: VU#222929 http://www.kb.cert.org/vuls/id/222929 http://www.fireeye.com/blog/uncategorized/2014/04/new-zero-day-exploit-targeting-internet-explorer-versions-9-through-11-identified-in-targeted-attacks.html http://www.signalsec.com/cve-2014-1776-ie-0day-analysis/ Microsoft Security Bulletin: MS14-021 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-021 http://www.osvdb.org/106311 http://securitytracker.com/id?1030154 http://secunia.com/advisories/57908
Copyright	Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.