ID de Prueba:	1.3.6.1.4.1.25623.1.0.900049
Categoría:	Windows : Microsoft Bulletins
Título:	Host Integration Server RPC Service Remote Code Execution Vulnerability (956695)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS08-059.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS08-059. Vulnerability Insight: The issue is due to an error in the SNA Remote Procedure Call (RPC) service. Vulnerability Impact: Successful exploitation could allow local attackers to bypass the authentication mechanism and can access administrative functionalities via a specially crafted RPC request. Affected Software/OS: - Microsoft Host Integration 2000/2004/2006 (Server) - Microsoft Host Integration 2000/2004 (Client) Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3466 BugTraq ID: 31620 http://www.securityfocus.com/bid/31620 Cert/CC Advisory: TA08-288A http://www.us-cert.gov/cas/techalerts/TA08-288A.html HPdes Security Advisory: HPSBST02379 http://marc.info/?l=bugtraq&m=122479227205998&w=2 HPdes Security Advisory: SSRT080143 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=745 Microsoft Security Bulletin: MS08-059 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-059 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6075 http://www.securitytracker.com/id?1021043 http://secunia.com/advisories/32233 http://www.vupen.com/english/advisories/2008/2810
Copyright	Copyright (C) 2008 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.