ID de Prueba:	1.3.6.1.4.1.25623.1.0.902971
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Lync Remote Code Execution Vulnerability (2834695)
Resumen:	This host is missing an important security update according to; Microsoft Bulletin MS13-041.
Descripción:	Summary: This host is missing an important security update according to Microsoft Bulletin MS13-041. Vulnerability Insight: A use-after-free error within the Lync control can be exploited to dereference already freed memory. Vulnerability Impact: Successful exploitation could allow an attacker could execute arbitrary code in the context of the current user by sharing specially crafted content, such as a file or a program, as a presentation in a Lync or Communicator session and then convince a user to view or share the specially crafted content. Affected Software/OS: - Microsoft Lync 2010 - Microsoft Communicator 2007 R2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	BugTraq ID: 59791 Common Vulnerability Exposure (CVE) ID: CVE-2013-1302 Cert/CC Advisory: TA13-134A http://www.us-cert.gov/ncas/alerts/TA13-134A Microsoft Security Bulletin: MS13-041 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-041 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15952
Copyright	Copyright (C) 2013 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.