ID de Prueba:	1.3.6.1.4.1.25623.1.0.902598
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Windows Time Component Remote Code Execution Vulnerability (2618451)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS11-090.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS11-090. Vulnerability Insight: The flaw is due to an unspecified error in the time component in DATIME.DLL, which allows remote attackers to execute arbitrary code via a crafted web site. Vulnerability Impact: Successful exploitation allows execution of arbitrary code when viewing a specially crafted web page using Internet Explorer. Affected Software/OS: - Microsoft Windows 7 Service Pack 1 and prior - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows 2003 Service Pack 2 and prior - Microsoft Windows Vista Service Pack 2 and prior - Microsoft Windows Server 2008 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 50970 Common Vulnerability Exposure (CVE) ID: CVE-2011-3397 Cert/CC Advisory: TA11-347A http://www.us-cert.gov/cas/techalerts/TA11-347A.html Microsoft Security Bulletin: MS11-090 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-090 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14735
Copyright	Copyright (C) 2011 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.