ID de Prueba:	1.3.6.1.4.1.25623.1.0.804473
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Journal Remote Code Execution Vulnerability (2975689)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS14-038.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS14-038. Vulnerability Insight: The flaw is due to an unspecified error within Windows Journal when handling Journal (JNT) files. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary code and compromise a user's system. Affected Software/OS: - Microsoft Windows 8 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2012/R2 - Microsoft Windows 7 x32/x64 Service Pack 1 and prior - Microsoft Windows Vista x32/x64 Service Pack 2 and prior - Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior - Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 68396 Common Vulnerability Exposure (CVE) ID: CVE-2014-1824 http://www.securityfocus.com/bid/68396 Microsoft Security Bulletin: MS14-038 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-038 Microsoft Knowledge Base article: 297185 https://support.microsoft.com/kb/2971850 http://secunia.com/advisories/59776
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.