Test ID:	1.3.6.1.4.1.25623.1.0.902613
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Internet Explorer Multiple Vulnerabilities (2559049)
Summary:	This host is missing a critical security update according to; Microsoft Bulletin MS11-057.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS11-057. Vulnerability Insight: Multiple flaws are due to: the way Internet Explorer handles objects in memory, handles JavaScript event handlers, accesses files stored in the local machine, renders data during certain processes and the way the telnet handler executes the associated application. Vulnerability Impact: Successful exploitation could allow remote attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Affected Software/OS: Microsoft Internet Explorer version 6.x/7.x/8.x/9.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1257 Cert/CC Advisory: TA11-221A http://www.us-cert.gov/cas/techalerts/TA11-221A.html Microsoft Security Bulletin: MS11-057 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-057 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12787 Common Vulnerability Exposure (CVE) ID: CVE-2011-1960 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12383 Common Vulnerability Exposure (CVE) ID: CVE-2011-1961 http://jvn.jp/en/jp/JVN80404511/index.html http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-000060.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12684 Common Vulnerability Exposure (CVE) ID: CVE-2011-1962 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12657 Common Vulnerability Exposure (CVE) ID: CVE-2011-1963 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12753 Common Vulnerability Exposure (CVE) ID: CVE-2011-1964 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12617 Common Vulnerability Exposure (CVE) ID: CVE-2011-2383 http://conference.hackinthebox.org/hitbsecconf2011ams/?page_id=1388 http://ju12.tistory.com/attachment/cfile4.uf@151FAB4C4DDC9E0002A6FE.ppt http://news.cnet.com/8301-1009_3-20066419-83.html http://www.eweek.com/c/a/Security/IE-Flaw-Lets-Attackers-Steal-Cookies-Access-User-Accounts-402503/ http://www.informationweek.com/news/security/vulnerabilities/229700031 http://www.networkworld.com/community/node/74259 http://www.theregister.co.uk/2011/05/25/microsoft_internet_explorer_cookiejacking/ http://www.youtube.com/watch?v=V95CX-3JpK0 http://www.youtube.com/watch?v=VsSkcnIFCxM https://sites.google.com/site/tentacoloviola/cookiejacking/Cookiejacking2011_final.ppt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12820
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.