Test Kennung:	1.3.6.1.4.1.25623.1.0.903100
Kategorie:	Windows : Microsoft Bulletins
Titel:	MS System Center Operations Manager XSS Vulnerabilities (2748552)
Zusammenfassung:	This host is missing an important security update according to; Microsoft Bulletin MS13-003.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS13-003. Vulnerability Insight: Input validation error due the way System Center Operations Manager handles specially crafted requests, which can be exploited to insert arbitrary HTML and script code. Vulnerability Impact: Successful exploitation will allow remote attackers to insert script code or issue commands to the SCOM server, which will be executed in a user's browser session in the context of an affected site. Affected Software/OS: - Microsoft System Center Operations Manager 2007 R2 - Microsoft System Center Operations Manager 2007 SP1 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Querverweis:	BugTraq ID: 55408 BugTraq ID: 55401 Common Vulnerability Exposure (CVE) ID: CVE-2013-0009 Cert/CC Advisory: TA13-008A http://www.us-cert.gov/cas/techalerts/TA13-008A.html Microsoft Security Bulletin: MS13-003 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-003 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15760 Common Vulnerability Exposure (CVE) ID: CVE-2013-0010 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16232
Copyright	Copyright (C) 2013 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.