Test ID:	1.3.6.1.4.1.25623.1.0.903330
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Internet Explorer Multiple Vulnerabilities (2898785)
Summary:	This host is missing a critical security update according to Microsoft; Bulletin MS13-097.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS13-097. Vulnerability Insight: Multiple flaws are due to: - An unspecified error exists during validation of local file installation. - An unspecified error exists during secure creation of registry keys. - Multiple unspecified errors. Vulnerability Impact: Successful exploitation will allow attackers to corrupt memory by the execution of arbitrary code, bypass certain security restrictions and compromise a user's system. Affected Software/OS: Microsoft Internet Explorer version 6.x/7.x/8.x/9.x/10.x/11.x. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-5045 http://www.exploit-db.com/exploits/33893 http://packetstormsecurity.com/files/127245/MS13-097-Registry-Symlink-IE-Sandbox-Escape.html Microsoft Security Bulletin: MS13-097 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-097 http://www.osvdb.org/100757 Common Vulnerability Exposure (CVE) ID: CVE-2013-5046 Common Vulnerability Exposure (CVE) ID: CVE-2013-5047 Common Vulnerability Exposure (CVE) ID: CVE-2013-5048 Common Vulnerability Exposure (CVE) ID: CVE-2013-5049 Common Vulnerability Exposure (CVE) ID: CVE-2013-5051 Common Vulnerability Exposure (CVE) ID: CVE-2013-5052
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.