Test ID:	1.3.6.1.4.1.25623.1.0.810625
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Internet Explorer Multiple Vulnerabilities (4013073)
Summary:	This host is missing a critical security; update according to Microsoft Bulletin MS17-006.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS17-006. Vulnerability Insight: Multiple flaws exist due to: - Multiple errors in the components handling objects in memory. - Microsoft browsers improperly access objects in memory. - An error in Microsoft browser which does not properly parse HTTP responses. - Multiple errors in JScript and VBScript engines rendering when handling objects in memory. - An error in Internet Explorer which does not properly enforce cross-domain policies. Vulnerability Impact: Successful exploitation will allow remote attackers to gain elevated privileges, gain access to potentially sensitive information, execute arbitrary code in the context of the current user and conduct spoofing attacks. Affected Software/OS: Microsoft Internet Explorer version 9.x/10.x/11.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.6 CVSS Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-0008 BugTraq ID: 96073 http://www.securityfocus.com/bid/96073 http://www.securitytracker.com/id/1038008 Common Vulnerability Exposure (CVE) ID: CVE-2017-0009 BugTraq ID: 96077 http://www.securityfocus.com/bid/96077 http://www.security-assessment.com/files/documents/advisory/comparestring_infoleak.pdf http://www.securitytracker.com/id/1038006 Common Vulnerability Exposure (CVE) ID: CVE-2017-0012 BugTraq ID: 96085 http://www.securityfocus.com/bid/96085 Common Vulnerability Exposure (CVE) ID: CVE-2017-0018 BugTraq ID: 96086 http://www.securityfocus.com/bid/96086 Common Vulnerability Exposure (CVE) ID: CVE-2017-0033 BugTraq ID: 96087 http://www.securityfocus.com/bid/96087 Common Vulnerability Exposure (CVE) ID: CVE-2017-0037 BugTraq ID: 96088 http://www.securityfocus.com/bid/96088 https://www.exploit-db.com/exploits/41454/ https://www.exploit-db.com/exploits/42354/ https://www.exploit-db.com/exploits/43125/ https://0patch.blogspot.si/2017/03/0patching-another-0-day-internet.html https://bugs.chromium.org/p/project-zero/issues/detail?id=1011 http://www.securitytracker.com/id/1037905 http://www.securitytracker.com/id/1037906 Common Vulnerability Exposure (CVE) ID: CVE-2017-0040 BugTraq ID: 96094 http://www.securityfocus.com/bid/96094 http://www.security-assessment.com/files/documents/advisory/reversesegment.pdf Common Vulnerability Exposure (CVE) ID: CVE-2017-0049 BugTraq ID: 96095 http://www.securityfocus.com/bid/96095 Common Vulnerability Exposure (CVE) ID: CVE-2017-0059 BugTraq ID: 96645 http://www.securityfocus.com/bid/96645 https://www.exploit-db.com/exploits/41661/ Common Vulnerability Exposure (CVE) ID: CVE-2017-0130 BugTraq ID: 96647 http://www.securityfocus.com/bid/96647 Common Vulnerability Exposure (CVE) ID: CVE-2017-0149 BugTraq ID: 96724 http://www.securityfocus.com/bid/96724 Common Vulnerability Exposure (CVE) ID: CVE-2017-0154 BugTraq ID: 96766 http://www.securityfocus.com/bid/96766
Copyright	Copyright (C) 2017 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.