ID de Prueba:	1.3.6.1.4.1.25623.1.0.903303
Categoría:	Windows : Microsoft Bulletins
Título:	Microsoft Internet Explorer Multiple Use After Free Vulnerabilities (2809289)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS13-021.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS13-021. Vulnerability Insight: Multiple use-after-free errors exist in the following functions, - OnResize - saveHistory - CMarkupBehaviorContext - CCaret - CElement - GetMarkupPtr - onBeforeCopy - removeChild - CTreeNode Vulnerability Impact: Successful exploitation will allow attackers to corrupt memory by the execution of arbitrary code in the context of the current user. Affected Software/OS: Microsoft Internet Explorer version 6.x/7.x/8.x/9.x/10.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-0087 Cert/CC Advisory: TA13-071A http://www.us-cert.gov/ncas/alerts/TA13-071A Microsoft Security Bulletin: MS13-021 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-021 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16583 Common Vulnerability Exposure (CVE) ID: CVE-2013-0088 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16386 Common Vulnerability Exposure (CVE) ID: CVE-2013-0089 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16587 Common Vulnerability Exposure (CVE) ID: CVE-2013-0090 https://www.exploit-db.com/exploits/40935/ http://blog.skylined.nl/20161216001.html http://packetstormsecurity.com/files/140186/Microsoft-Internet-Explorer-9-IEFRAME-CView-EnsureSize-Use-After-Free.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16049 Common Vulnerability Exposure (CVE) ID: CVE-2013-0091 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16526 Common Vulnerability Exposure (CVE) ID: CVE-2013-0092 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16324 Common Vulnerability Exposure (CVE) ID: CVE-2013-0093 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16239 Common Vulnerability Exposure (CVE) ID: CVE-2013-0094 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16634 Common Vulnerability Exposure (CVE) ID: CVE-2013-1288 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16095
Copyright	Copyright (C) 2013 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.