Windows : Microsoft Bulletins : Microsoft Edge Multiple Vulnerabilities (3104519)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.807022

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Edge Multiple Vulnerabilities (3104519)

Zusammenfassung: This host is missing a critical security; update according to Microsoft Bulletin MS15-113.

Beschreibung: Summary:
This host is missing a critical security
update according to Microsoft Bulletin MS15-113.

Vulnerability Insight:
Multiple flaws exist due to:

- Multiple improper memory object handling errors.

- Microsoft Edge fails Fail to use the Address Space Layout Randomization
(ASLR) security feature.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to execute arbitrary code or cause a denial of service, bypass the
Address Space Layout Randomization (ASLR) security feature, which helps
protect users from a broad class of vulnerabilities.

Affected Software/OS:
- Microsoft Edge on Microsoft Windows 10 x32/x64

- Microsoft Windows 10 Version 1511 x32/x64

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2015-6064
BugTraq ID: 77470
http://www.securityfocus.com/bid/77470
http://www.zerodayinitiative.com/advisories/ZDI-15-538
Microsoft Security Bulletin: MS15-112
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-112
Microsoft Security Bulletin: MS15-113
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-113
http://www.securitytracker.com/id/1034112
http://www.securitytracker.com/id/1034113
Common Vulnerability Exposure (CVE) ID: CVE-2015-6073
Common Vulnerability Exposure (CVE) ID: CVE-2015-6078
Common Vulnerability Exposure (CVE) ID: CVE-2015-6088

Copyright Copyright (C) 2016 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.807022
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Edge Multiple Vulnerabilities (3104519)
Zusammenfassung:	This host is missing a critical security; update according to Microsoft Bulletin MS15-113.
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS15-113. Vulnerability Insight: Multiple flaws exist due to: - Multiple improper memory object handling errors. - Microsoft Edge fails Fail to use the Address Space Layout Randomization (ASLR) security feature. Vulnerability Impact: Successful exploitation will allow remote attackers to execute arbitrary code or cause a denial of service, bypass the Address Space Layout Randomization (ASLR) security feature, which helps protect users from a broad class of vulnerabilities. Affected Software/OS: - Microsoft Edge on Microsoft Windows 10 x32/x64 - Microsoft Windows 10 Version 1511 x32/x64 Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6064 BugTraq ID: 77470 http://www.securityfocus.com/bid/77470 http://www.zerodayinitiative.com/advisories/ZDI-15-538 Microsoft Security Bulletin: MS15-112 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-112 Microsoft Security Bulletin: MS15-113 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2015/ms15-113 http://www.securitytracker.com/id/1034112 http://www.securitytracker.com/id/1034113 Common Vulnerability Exposure (CVE) ID: CVE-2015-6073 Common Vulnerability Exposure (CVE) ID: CVE-2015-6078 Common Vulnerability Exposure (CVE) ID: CVE-2015-6088
Copyright	Copyright (C) 2016 Greenbone AG