Test ID:	1.3.6.1.4.1.25623.1.0.810634
Category:	Windows : Microsoft Bulletins
Title:	Microsoft IE And Microsoft Edge Flash Player RCE Vulnerability (3201860)
Summary:	This host is missing a critical security; update according to Microsoft Bulletin MS16-128.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS16-128. Vulnerability Insight: The flaw exists due to a use-after-free vulnerability. Vulnerability Impact: Successful exploitation of this vulnerability will allow remote attackers to take control of the affected system. Affected Software/OS: - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012/2012R2 - Microsoft Windows 10 x32/x64 - Microsoft Windows 10 Version 1511 x32/x64 - Microsoft Windows 10 Version 1607 x32/x64 - Microsoft Windows Server 2016 x64 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2016-7855 BugTraq ID: 93861 http://www.securityfocus.com/bid/93861 https://security.gentoo.org/glsa/201610-10 https://security.googleblog.com/2016/10/disclosing-vulnerabilities-to-protect.html Microsoft Security Bulletin: MS16-128 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2016/ms16-128 RedHat Security Advisories: RHSA-2016:2119 http://rhn.redhat.com/errata/RHSA-2016-2119.html http://www.securitytracker.com/id/1037111
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.