Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.801966
Kategorie:Windows
Titel:Microsoft Windows ActiveX Control Multiple Vulnerabilities (2562937)
Zusammenfassung:This script will list all the vulnerable activex controls installed; on the remote windows machine with references and cause.
Beschreibung:Summary:
This script will list all the vulnerable activex controls installed
on the remote windows machine with references and cause.

Vulnerability Insight:
The flaws are due to error in restricting the SetLayoutData method,
which fails to properly restrict the SetLayoutData method.

Vulnerability Impact:
Successful exploitation will let the remote attackers execute arbitrary code,
and can compromise a vulnerable system.

Affected Software/OS:
- Microsoft Windows 7 Service Pack 1 and prior

- Microsoft Windows XP Service Pack 3 and prior

- Microsoft Windows 2003 Service Pack 2 and prior

- Microsoft Windows Vista Service Pack 2 and prior

- Microsoft Windows Server 2008 Service Pack 2 and prior

Solution:
Apply the patch Workaround:
Set the killbit for the following CLSIDs,

{B4CB50E4-0309-4906-86EA-10B6641C8392},

{E4F874A0-56ED-11D0-9C43-00A0C90F29FC},

{FB7FE605-A832-11D1-88A8-0000E8D220A6}

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2011-0331
BugTraq ID: 46930
http://www.securityfocus.com/bid/46930
http://secunia.com/secunia_research/2011-22/
http://osvdb.org/71249
http://secunia.com/advisories/43360
http://www.vupen.com/english/advisories/2011/0725
Common Vulnerability Exposure (CVE) ID: CVE-2011-1207
BugTraq ID: 47643
http://www.securityfocus.com/bid/47643
http://securitytracker.com/id?1025464
http://secunia.com/advisories/43399
http://secunia.com/advisories/43474
http://www.vupen.com/english/advisories/2011/1129
Common Vulnerability Exposure (CVE) ID: CVE-2011-1827
BugTraq ID: 47695
http://www.securityfocus.com/bid/47695
https://www.sec-consult.com/en/advisories.html#a68
http://www.vupen.com/english/advisories/2011/1162
CopyrightCopyright (c) 2011 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.