ID de Prueba:	1.3.6.1.4.1.25623.1.0.803701
Categoría:	Windows
Título:	Microsoft Windows ActiveX Control Multiple Vulnerabilities (2820197)
Resumen:	This script will list all the vulnerable activex controls installed; on the remote windows machine with references and cause.
Descripción:	Summary: This script will list all the vulnerable activex controls installed on the remote windows machine with references and cause. Vulnerability Insight: The flaws are due to errors in the handling of Honeywell Enterprise Buildings Integrator, SymmetrE and ComfortPoint Open Manager ActiveX controls. Vulnerability Impact: Successful exploitation will let the remote attackers execute arbitrary code, and can compromise a vulnerable system. Affected Software/OS: - Microsoft Windows 8 - Microsoft Windows Server 2012 - Microsoft Windows XP x32 Edition Service Pack 3 and prior - Microsoft Windows XP x64 Edition Service Pack 2 and prior - Microsoft Windows 7 x32/x64 Edition Service Pack 1 and prior - Microsoft Windows 2003 x32/x64 Edition Service Pack 2 and prior - Microsoft Windows Vista x32/x64 Edition Service Pack 2 and prior - Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 and prior - Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 and prior Solution: Apply the patch Workaround: Set the killbit for the following CLSIDs, {0d080d7d-28d2-4f86-bfa1-d582e5ce4867}, {29e9b436-dfac-42f9-b209-bd37bafe9317}. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0108 http://ics-cert.us-cert.gov/pdf/ICSA-13-053-02.pdf
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.