Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.902697 |
Kategorie: | Windows : Microsoft Bulletins |
Titel: | MS Exchange Server Remote Code Execution Vulnerabilities (2784126) |
Zusammenfassung: | This host is missing a critical security update according to; Microsoft Bulletin MS12-080. |
Beschreibung: | Summary: This host is missing a critical security update according to Microsoft Bulletin MS12-080. Vulnerability Insight: The flaws are due to - Error in the WebReady Document Viewing when used to preview a specially crafted file through Outlook Web Access. - Improper handling of RSS feeds rendering the Information Store service unresponsive until the process is forcibly terminated and corrupt the databases. Vulnerability Impact: Successful exploitation could allow an attacker to cause a denial of service condition or run arbitrary code as LocalService on the affected Exchange server. Affected Software/OS: - Microsoft Exchange Server 2007 Service Pack 3 - Microsoft Exchange Server 2010 Service Pack 1 - Microsoft Exchange Server 2010 Service Pack 2 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P |
Querverweis: |
BugTraq ID: 55977 BugTraq ID: 55993 BugTraq ID: 56836 Common Vulnerability Exposure (CVE) ID: CVE-2012-3214 Cert/CC Advisory: TA12-346A http://www.us-cert.gov/cas/techalerts/TA12-346A.html Cert/CC Advisory: TA13-043B http://www.us-cert.gov/cas/techalerts/TA13-043B.html http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 Microsoft Security Bulletin: MS12-080 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-080 Microsoft Security Bulletin: MS13-013 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-013 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16178 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16500 Common Vulnerability Exposure (CVE) ID: CVE-2012-3217 http://osvdb.org/86392 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15911 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16080 Common Vulnerability Exposure (CVE) ID: CVE-2012-4791 http://www.securityfocus.com/bid/56836 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16158 |
Copyright | Copyright (C) 2012 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |