ID de Prueba:	1.3.6.1.4.1.25623.1.0.817659
Categoría:	Windows
Título:	Microsoft Windows Defender Antimalware Platform RCE Vulnerability (Jan 2021)
Resumen:	This host is missing a critical security; update according to Microsoft Security Updates released for Microsoft Windows; Defender Protection Engine dated 12-01-2021
Descripción:	Summary: This host is missing a critical security update according to Microsoft Security Updates released for Microsoft Windows Defender Protection Engine dated 12-01-2021 Vulnerability Insight: The flaw exists while opening a malicious document on a system where Microsoft Windows Defender is installed Vulnerability Impact: Successful exploitation will allow an attacker to execute arbitrary code on affected system. Affected Software/OS: - Microsoft Windows Defender on Microsoft Windows 10 x32/x64 - Microsoft Windows Server 2019 - Microsoft Windows Server 2016 - Microsoft Windows 7 x32/x64 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows Server 2008 x32 - Microsoft Windows Server 2008 R2 x64 - Microsoft Windows Server 2012 - Microsoft Windows Server 2012 R2 Solution: Run the Windows Update to update the malware protection engine to the latest version available. Typically, no action is required as the built-in mechanism for the automatic detection and deployment of updates will apply the update itself. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2021-1647 https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1647
Copyright	Copyright (C) 2021 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.