Windows : Microsoft Bulletins : Microsoft Office Word Remote Code Execution Vulnerabilities (3038999)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.805057

Categoría: Windows : Microsoft Bulletins

Título: Microsoft Office Word Remote Code Execution Vulnerabilities (3038999)

Resumen: This host is missing a critical security; update according to Microsoft Bulletin MS15-022.

Descripción: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS15-022.

Vulnerability Insight:
Multiple flaws are exists when,

- The Office software improperly handles objects in memory while parsing
specially crafted Office files.

- The Office software fails to properly handle rich text format files in
memory.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to run arbitrary code in the context of the current user and
to perform actions in the security context of the current user.

Affected Software/OS:
- Microsoft Word 2010

- Microsoft Word 2013 and

- Microsoft Word 2007 Service Pack 3 and prior

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2015-0085
Microsoft Security Bulletin: MS15-022
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-022
http://www.securitytracker.com/id/1031896
Common Vulnerability Exposure (CVE) ID: CVE-2015-0086
Common Vulnerability Exposure (CVE) ID: CVE-2015-0097
https://www.exploit-db.com/exploits/37657/

Copyright Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.805057
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Office Word Remote Code Execution Vulnerabilities (3038999)
Resumen:	This host is missing a critical security; update according to Microsoft Bulletin MS15-022.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS15-022. Vulnerability Insight: Multiple flaws are exists when, - The Office software improperly handles objects in memory while parsing specially crafted Office files. - The Office software fails to properly handle rich text format files in memory. Vulnerability Impact: Successful exploitation will allow remote attackers to run arbitrary code in the context of the current user and to perform actions in the security context of the current user. Affected Software/OS: - Microsoft Word 2010 - Microsoft Word 2013 and - Microsoft Word 2007 Service Pack 3 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-0085 Microsoft Security Bulletin: MS15-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-022 http://www.securitytracker.com/id/1031896 Common Vulnerability Exposure (CVE) ID: CVE-2015-0086 Common Vulnerability Exposure (CVE) ID: CVE-2015-0097 https://www.exploit-db.com/exploits/37657/
Copyright	Copyright (C) 2015 Greenbone Networks GmbH