Download
| Alert*
oval:org.secpod.oval:def:3414
The host is missing an important security update according to Microsoft security bulletin, MS11-091. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploita ... oval:org.secpod.oval:def:3405 The host is missing an important security update according to Microsoft security bulletin, MS11-096. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted Excel file. Successful exploitation could allow an ... oval:org.secpod.oval:def:4144 The host is missing an important security update according to Microsoft security bulletin, MS12-011. The update is required to fix elevation of privilege or information disclosure vulnerabilities. The flaws are present due to improper handling of URL containing malicious JavaScript elements. Success ... oval:org.secpod.oval:def:4155 The host is missing an important security update according to Microsoft security bulletin, MS12-015. The update is required to fix remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle specially crafted Visio files. Successful exploitation al ... oval:org.secpod.oval:def:3185 The host is missing an important security update according to Microsoft security bulletin, MS08-040. The update is required to fix privilege escalation vulnerabilities. The flaws are present in Microsoft SQL Server, which fails to handle functions such as page reusage, allocating more memory for the ... oval:org.secpod.oval:def:3409 The host is missing an important security update according to Microsoft security bulletin, MS11-094. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle crafted powerpoint files and loading of librarie ... oval:org.secpod.oval:def:1383 The host is missing a critical security update according to Microsoft security bulletin, MS10-041. The update is required to fix data tampering vulnerability. A flaw is present in the Microsoft .NET Framework, which allows data tampering of signed XML content without being detected. Successful explo ... oval:org.secpod.oval:def:5593 The host is missing a critical security update according to Microsoft security bulletin, MS12-029. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to handle crafted RTF data. Successful exploitation could allow attackers to execute ... oval:org.secpod.oval:def:9721 The host is missing a critical security update according to Microsoft security bulletin, MS13-022. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Silverlight, which fail to handle a specially crafted Silverlight application. Successful exploitat ... oval:org.secpod.oval:def:1416 The host is missing an Important security update according to Microsoft security bulletin, MS11-055. The update is required to fix remote code execution vulnerability in Microsoft Visio 2003. A flaw is present in the application which can be triggered while opening legitimate Visio file that is loca ... oval:org.secpod.oval:def:5100 The host is missing an important security update according to Microsoft security bulletin, MS12-028. The update is required to fix a remote code execution vulnerability. A flaw is present in the applications, which fail to properly validate the .wps file format when parsing a specially crafted file. ... oval:org.secpod.oval:def:5104 The host is missing a critical security update according to Microsoft security bulletin, MS12-027. The update is required to fix a remote code execution vulnerability. A flaw is present in Windows common controls, which fails to handle a website containing specially crafted content. Successful explo ... oval:org.secpod.oval:def:5580 The host is missing an important security update according to Microsoft security bulletin, MS12-031. The update is required to fix a remote code execution vulnerability. A flaw is present in the application which fails to handle a specially crafted Visio file. Successful exploitation could allow att ... oval:org.secpod.oval:def:1753 The host is missing an important security update according to Microsoft security bulletin, MS11-060. The update is require to fix a remote code execution vulnerability. The flaws are ipresent in the application, which fails to parse certain structures when handling specially crafted Visio files. Suc ... oval:org.secpod.oval:def:1522 The host is missing a critical security update according to Microsoft security bulletin, MS10-031. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Visual Basic for Applications, which fails to search for ActiveX Controls embedded in documents. Su ... oval:org.secpod.oval:def:1184 The host is missing an important security update according to Microsoft security bulletin, MS11-045. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle a specially crafted Excel file. Successful exploitation allows remote attacker ... oval:org.secpod.oval:def:1989 The host is missing a critical security update according to Microsoft security bulletin, MS10-064. The update is required to fix heap-based buffer overflow vulnerability. A flaw is present in the Outlook in Microsoft Windows, which fails to check specially crafted e-mail message. Successful exploita ... oval:org.secpod.oval:def:1033 The host is missing an Important security update according to Microsoft security bulletin, MS11-008. The update is required to fix remote code execution vulnerability in Microsoft Visio. The flaws are present in the application, which fails to validate objects in memory and fail to parse certain str ... oval:org.secpod.oval:def:6721 The host is missing a critical security update according to MS12-060. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which is caused when an ActiveX control corrupts the system state. Successful exploitation allows attackers to execute arbitr ... oval:org.secpod.oval:def:6969 The host is installed is missing an important security update according to Microsoft security bulletin, MS12-062. The update is required to fix a privilege escalation vulnerability. A flaw is present in the application, which fails to handle a specially crafted URL. Successful exploitation allows at ... oval:org.secpod.oval:def:1374 The host is missing a critical security update according to Microsoft security bulletin, MS10-044. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Microsoft Office Access ActiveX Controls, which fails to validate a specially crafted Office file. Successf ... oval:org.secpod.oval:def:1377 The host is missing a critical security update according to Microsoft security bulletin, MS10-087. The update is required to fix multiple remote code execution vulnerabilities. Flaws are in Microsoft Office, which fails to validate crafted RTF data, msofbtSp records and unspecified flags. Successful ... oval:org.secpod.oval:def:1379 The host is missing an important security update according to Microsoft security bulletin, MS10-045. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Outlook, which fails to verify attachments in a specially crafted e-mail message. Successf ... oval:org.secpod.oval:def:1381 The host is missing a critical security update according to Microsoft security bulletin, MS10-083. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Shell and WordPad in Microsoft Windows, which fails to validate COM objects during instantiation. Suc ... oval:org.secpod.oval:def:3300 The host is missing a critical security update according to Microsoft security bulletin, MS11-023. The update is required to fix remote code execution vulnerability. A flaw is present in the application which does not properly handle loading of DLL files. Successful exploitation allows attackers to ... oval:org.secpod.oval:def:1368 The host is missing a critical security update according to Microsoft security bulletin, MS10-088. The update is required to fix multiple buffer overflow vulnerabilities. Multiple flaws are present in PP7X32.DLL in Microsoft PowerPoint, which fails to validate crafted PowerPoint document. Successful ... oval:org.secpod.oval:def:1248 The host is missing a critical security update according to Microsoft security bulletin, MS10-103. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Publisher, which fails to handle crafted Publisher file that uses an old file format. Successful exploi ... oval:org.secpod.oval:def:1570 The host is missing a critical security update according to Microsoft security bulletin, MS10-028. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Visio, which fails to validate attributes and index calculation of a specially crafted Visio f ... oval:org.secpod.oval:def:1214 The host is missing a critical security update according to Microsoft security bulletin, MS10-051. The update is required to fix a remote code execution vulnerability. The flaws are present in the Microsoft XML Core Services (MSXML) which fails to handle HTTP responses. Successful exploitation allow ... oval:org.secpod.oval:def:1217 The host is missing an important security update according to Microsoft security bulletin, MS10-105. The update is required to fix denial of service vulnerability. Multiple flaws are caused due to errors in processing CGM, PICT, TIFF, FlashPix image files. Successful exploitation could allows an att ... oval:org.secpod.oval:def:6352 The host is missing an important security update according to Microsoft security bulletin, MS12-046. The update is required to fix a remote code execution vulnerability. A flaw is present in the applications, which fail to properly handle the loading of DLL files. Successful exploitation could allow ... oval:org.secpod.oval:def:3299 The host is missing a critical security update according to Microsoft security bulletin, MS09-003. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Exchange Server , which fails to handle a specially crafted TNEF message. Successful exploita ... oval:org.secpod.oval:def:6682 The host is missing an important security update according to Microsoft security bulletin, MS12-059. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Visio, which fails to handle a specially crafted Visio file. Successful exploitation could allow ... oval:org.secpod.oval:def:3187 The host is missing a critical security update according to Microsoft security bulletin, MS10-036. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office, which fails to validate COM objects to be instantiated. Successful exploitation allows an a ... oval:org.secpod.oval:def:1560 The host is missing a critical security update according to Microsoft security bulletin, MS10-080. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel, which fails to validate Excel document with crafted record information. Successfu ... oval:org.secpod.oval:def:1566 The host is missing a critical security update according to Microsoft security bulletin, MS10-003. The update is required to fix buffer overflow vulnerability. A flaw is present in the MSO.dll in Office XP, which fails to validate crafted Office document. Successful exploitation could allow an attac ... oval:org.secpod.oval:def:3184 The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. ... oval:org.secpod.oval:def:3091 The host is missing an important security update according to Microsoft security bulletin, MS08-077. The update is required to fix elevation of privilege vulnerability. A flaw is present in Microsoft Office SharePoint Server, which fails to handle an administrative URL on a SharePoint site. Successf ... oval:org.secpod.oval:def:3093 The host is missing a critical security update according to Microsoft security bulletin, MS08-070. The update is required to fix remote code execution vulnerabilities. The flaws are present in the ActiveX controls for the Microsoft Visual Basic 6.0 Runtime Extended Files, which fails to handle speci ... oval:org.secpod.oval:def:3094 The host is missing an important security update according to Microsoft security bulletin, MS08-035. The update is required to fix denial of service vulnerability. A flaw is present in the implementations of Active Directory on Microsoft Windows , which fails to handle specially crafted LDAP request ... oval:org.secpod.oval:def:3301 The host is missing a critical security update according to Microsoft security bulletin, MS08-055. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails handle a specially crafted OneNote URL. Successful exploitation could allow an atta ... oval:org.secpod.oval:def:3302 The host is missing a critical security update according to Microsoft security bulletin, MS08-008. The update is required to fix remote code execution vulnerability. A flaw is present in Object Linking and Embedding (OLE) Automation, which fails to handle a specially crafted Web page. Successful exp ... oval:org.secpod.oval:def:1586 The host is missing a critical security update according to Microsoft security bulletin, MS10-027. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Media Player, which fails to handle specially crafted media content hosted on a malicious Web site. S ... oval:org.secpod.oval:def:1588 The host is missing a critical security update according to Microsoft security bulletin, MS10-011. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows Client/Server Run-time Subsystem (CSRSS), which fails to terminate user processes when a user logs out ... oval:org.secpod.oval:def:3295 The host is missing a critical security update according to Microsoft security bulletin, MS08-017. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Web Components, which fails to handle a specially crafted Web page. Successful exploitation coul ... oval:org.secpod.oval:def:3296 The host is missing an important security update according to Microsoft security bulletin, MS08-048. The update is required to fix information disclosure vulnerability. A flaw is present in Outlook Express and Windows Mail, which fails handle a specially crafted Web page. Successful exploitation cou ... oval:org.secpod.oval:def:3183 The host is missing an important security update according to Microsoft security bulletin, MS08-062. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Internet Printing Service, which fails to handle memory is allocation within the Internet Printing ... oval:org.secpod.oval:def:1042 The host is missing an Important security update according to Microsoft security bulletin, MS11-022. The update is required to fix remote code execution vulnerability in Microsoft Powerpoint 2002, 2003, 2007 or 2010 or powerpoint viewer 2007 or 2010 or Office Compatibility Pack for Word, Excel, and ... oval:org.secpod.oval:def:2188 The host is missing a critical security update according to Microsoft security bulletin, MS10-024. The update is required to fix denial of service vulnerabilities. Flaws are present in Microsoft Exchange and SMTP service Office Excel. SMTP service fails to handle a specially crafted DNS response sen ... oval:org.secpod.oval:def:2620 The host is missing impotant security update according to Microsoft security bulletin, MS09-008. The update is required to fix DNS and WINS server spoofing vulnerability. DNS Resolver Cache Service (aka DNSCache) when dynamic updates are enabled, does not reuse cached DNS responses and WINS server d ... oval:org.secpod.oval:def:2623 The host is missing a critical security update according to Microsoft bulletin, MS08-045. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted web page. Successful exploitation could allow at ... oval:org.secpod.oval:def:2626 The host is missing a critical security update according to bulletin, MS08-078. The update is required to fix multiple remote code execution vulnerabilities. The flaw are present in the application, which fails to handle a specially crafted Web page. Successful exploitation could allow remote code e ... oval:org.secpod.oval:def:2627 The host is missing a critical security update according to, MS08-001. The update is required to fix multple remote code execution vulnerabilities. A flaw is present in the application, which fails in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. Successful exploitation could ... oval:org.secpod.oval:def:2619 The host is missing a critical security update according to Microsoft security bulletin, MS08-049. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Windows Event System, which fails to handle per-user subscriptions correctly. Successful exploita ... oval:org.secpod.oval:def:2618 The host is missing a important security update according to Microsoft security bulletin, MS09-004. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft SQL Server, which fails to validate input parameters passed to an extended stored procedure. Succe ... oval:org.secpod.oval:def:2994 The host is missing a critical security update according to Microsoft security bulletin, MS08-074. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Excel, which fails to properly handle specially crafted Excel file. Successful exploitatio ... oval:org.secpod.oval:def:2993 The host is missing a critical security update according to Microsoft security bulletin, MS08-033. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft DirectX, which fails to handle a specially crafted media file. Successful exploitation could allow an ... oval:org.secpod.oval:def:2632 The host is missing an important security update according to Microsoft bulletin, MS08-043. The update is required to fix a remote code execution vulnerability. The flaws are present in the Excel parses record values, index values and array index when loading Excel files into memory and when data co ... oval:org.secpod.oval:def:2511 The host is missing a cumulative security update according to Microsoft security bulletin, MS09-032. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls, which fails to handle a specially crafted W ... oval:org.secpod.oval:def:2998 The host is missing an important security update according to Microsoft security bulletin, MS09-031. The update is required to fix privilege escalation vulnerability. A flaw is present in the Microsoft ISA Server 2006, which fails to handle an administrative user account for an ISA server that is co ... oval:org.secpod.oval:def:2997 The host is missing a critical security update according to Microsoft security bulletin, MS08-060. The update is required to fix remote code execution vulnerability. A flaw is present in Active Directory on Microsoft Windows 2000 Server, which fails to handle memory allocation for client LDAP reques ... oval:org.secpod.oval:def:2639 The host is missing an important security update according to Microsoft security bulletin, MS09-033. The update is required to fix privilege escalation vulnerability. A flaw is present in the Microsoft Virtual PC and Microsoft Virtual Server, which fails to validate privilege levels when executing s ... oval:org.secpod.oval:def:2629 The host is missing a critical security update according to Microsoft bulletin, MS08-024. The update is required to fix a remote code execution vulnerability. A flaw is present in the application. which fails to handle a specially crafted web page. Successful exploitation could allow attackers to ex ... oval:org.secpod.oval:def:2041 The host is missing a critical security update according to Microsoft security bulletin, MS10-004. The update is required to fix multiple vulnerabilities. Multiple flaws are present in the Office PowerPoint on Microsoft Windows, which fails to validate crafted PowerPoint document. Successful exploit ... oval:org.secpod.oval:def:2285 The host is missing a critical security update according to Microsoft security bulletin, MS09-067. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle malformed records. Successful exploitation allows an atta ... oval:org.secpod.oval:def:2288 The host is missing a critical security update according to Microsoft security bulletin, MS09-017. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office PowerPoint, which fails handle a specially crafted PowerPoint file. Successful exploit ... oval:org.secpod.oval:def:2287 The host is missing a critical security update according to Microsoft security bulletin, MS09-074. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Project, which fails to handle memory allocation for Project files. Successful exploitation ... oval:org.secpod.oval:def:2289 The host is missing a critical security update according to Microsoft security bulletin, MS09-028. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft DirectShow , which fails to handle a specially crafted QuickTime media file. Successful explo ... oval:org.secpod.oval:def:2724 The host is missing a security update according to Microsoft security bulletin, MS09-023. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft ActiveX Controls and Yahoo! Music Jukebox product, which fails to handle a specially crafted Web page ... oval:org.secpod.oval:def:2606 The host is missing an important security update according to Microsoft security bulletin, MS08-002. The update is required to fix elevation of privilege vulnerability. A flaw is present in Microsoft Windows Local Security Authority Subsystem Service (LSASS), which fails to handle validating paramet ... oval:org.secpod.oval:def:2295 The host is missing a important security update according to Microsoft security bulletin, MS09-040. The update is required to fix privilege elevation vulnerability. The flaw is present in the Windows Message Queuing Service, which fails to handle a specially crafted request sent to MSMQ service. Suc ... oval:org.secpod.oval:def:2611 The host is missing critical security update according to Microsoft security bulletin, MS09-018. The update is required to fix remote code execution vulnerability. A flaw is present in LDAP service in Active Directory, which does not properly free memory and allow memory leak for LDAP and LDAPS requ ... oval:org.secpod.oval:def:2610 The host is missing a security update according to Microsoft security bulletin, MS09-011. The update is required to fix heap memory error. The flaw is present in MJPEG file or video stream with a malformed Huffman table, which triggers an exception that frees heap memory. Successful exploitation cou ... oval:org.secpod.oval:def:2615 The host is missing a critical security update according to Microsoft security bulletin, MS08-015. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Outlook, which fails handle a specially crafted mailto URI. Successful exploitation could allow ... oval:org.secpod.oval:def:2614 The host is missing a critical security update according to Microsoft security bulletin, MS08-028. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Jet Database Engine (Jet) in Windows, which fails to handle parsing of data within a database. Succ ... oval:org.secpod.oval:def:2616 The host is missing a critical security update according to Microsoft security bulletin, MS08-012. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Publisher, which fails handle a specially crafted Publisher file. Successful exploitation ... oval:org.secpod.oval:def:2608 The host is missing a critical security update according to Microsoft security bulletin, MS08-046. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Image Color Management (ICM) system, which fails handle a specially crafted image file. Successful ... oval:org.secpod.oval:def:2609 The host is missing a critical security update according to Microsoft security bulletin, MS08-067. The update is required to fix remote code execution vulnerability. A flaw is present in Server service, which fails to handle a specially crafted RPC request. Successful exploitation could allow an att ... oval:org.secpod.oval:def:2291 The host is missing a critical security update according to Microsoft security bulletin, MS09-046. The update is required to fix remote code execution vulnerability. A flaw is present in the DHTML Editing Component ActiveX control , which fails to handle a specially crafted Web page. Successful expl ... oval:org.secpod.oval:def:2290 The host is missing a critical security update according to Microsoft security bulletin, MS09-039. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Internet Name Service (WINS), which fails to handle specially crafted WINS replication packet. ... oval:org.secpod.oval:def:2293 The host is missing a critical security update according to Microsoft security bulletin, MS09-009. The update is required to fix remote code execution vulnerabilities in Microsoft Office Excel. The flaws are present in the Microsoft Office Excel, which fails handle a specially crafted Excel file. Su ... oval:org.secpod.oval:def:2292 The host is missing an important security update according to Microsoft security bulletin, MS09-057. The update is required to fix remote code execution vulnerability. A flaw is present in the ActiveX control included with Windows Indexing Service, which fails to handle specifically crafted Web cont ... oval:org.secpod.oval:def:2034 The host is missing a critical security update according to Microsoft security bulletin, MS10-022. The update is required to fix remote code execution vulnerability. A flaw is present in VBScript engine, which fails to process WIndows help files in protected mode. User is forced to press the F1 key ... oval:org.secpod.oval:def:2037 The host is missing a critical security update according to Microsoft security bulletin, MS10-023. The update is required to fix buffer overflow vulnerability. A flaw is present in the Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploitation allow ... oval:org.secpod.oval:def:2039 The host is missing a critical security update according to Microsoft security bulletin, MS10-057. The update is required to fix code execution vulnerability. A flaw is present in the Office Excel in Microsoft Windows, which fails to parse the Excel file format. Successful exploitation could allow a ... oval:org.secpod.oval:def:2369 The host is missing a critical security update according to Microsoft security bulletin, MS09-021. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle a specially crafted Excel file that includes a malformed ... oval:org.secpod.oval:def:989 The host is missing an Important security update according to Microsoft security bulletin, MS11-016. The update is required to fix remote code execution vulnerability in Microsoft Groove 2007 Service Pack 2. A flaw is present in the application, which incorrectly restricts the path used for loading ... oval:org.secpod.oval:def:2250 The host is missing a critical security update according to Microsoft security bulletin, MS09-069. The update is required to fix denial of service condition. A flaw is present in the Windows Local Security Authority Subsystem Service (LSASS), which fails to handle specially crafted ISAKMP messages c ... oval:org.secpod.oval:def:2373 The host is missing an important security update according to Microsoft security bulletin, MS09-016. The update is required to fix denial of service vulnerabilities. The flaws are present in the Microsoft Internet Security and Acceleration (ISA) Server and Microsoft Forefront Threat Management Gatew ... oval:org.secpod.oval:def:2580 The host is missing a critical security update according to Microsoft security bulletin, MS08-018. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Project, which fails handle a specially crafted Project file. Successful exploitation could allow an at ... oval:org.secpod.oval:def:2582 The host is missing an important security update according to Microsoft security bulletin, MS08-034. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows Internet Name Service(WINS), which fails to handle validation of the data structures of network pack ... oval:org.secpod.oval:def:7914 The host is missing an important security update according to Microsoft Security Bulletin, MS12-076. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to properly handle memory when opening specially crafted Excel files. Successful exploita ... oval:org.secpod.oval:def:2352 The host is missing an important security update according to Microsoft security bulletin, MS09-005. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Visio, which fails to handle a specially crafted Visio file. Successful exploitation ... oval:org.secpod.oval:def:2353 The host is missing a important security update according to Microsoft security bulletin, MS09-026. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows RPC. The RPC Marshalling Engine fails to update its internal state appropriately. Successful exploita ... oval:org.secpod.oval:def:2356 The host is missing an important security update according to Microsoft security bulletin, MS09-030. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploitati ... oval:org.secpod.oval:def:2355 The host is missing a important security update according to Microsoft security bulletin, MS09-020. The update is required to fix privilege elevation vulnerabilities. The flaws are present in the Microsoft Internet Information Services, which fails to handle a specially crafted HTTP request. Success ... oval:org.secpod.oval:def:2563 The host is missing a critical security update according to Microsoft security bulletin, MS09-052. The update is required to fix remote code execution vulnerability in Windows Media Player. A flaw is present in the Windows Media Player, which fails handle a specially crafted ASF file. Successful exp ... oval:org.secpod.oval:def:822 The host is missing an Important security update according to Microsoft security bulletin, MS11-021. The update is required to fix multiple code execution vulnerabilities in Microsoft Office Software or Microsoft Office Suites and Components (Excel). The flaws are present in the application, whi ... oval:org.secpod.oval:def:2576 The host is missing a critical security update according to Microsoft security bulletin, MS08-013. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted Microsoft Office file. Successful exploitation could ... oval:org.secpod.oval:def:2579 The host is missing an important security update according to Microsoft security bulletin, MS08-011. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Works File Converter, which fails handle a specially crafted Works (.wps) file. Successful expl ... oval:org.secpod.oval:def:2662 The host is missing an important security update according to Microsoft security bulletin, MS08-019. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Visio, which fails to handle a specially crafted Visio file. Successful exploitation allows an ... oval:org.secpod.oval:def:2661 The host is missing an important security update according to Microsoft security bulletin, MS08-065. The update is required to fix remote code execution vulnerability. The vulnerability could allow remote code execution on Microsoft Windows 2000 systems with the MSMQ service enabled. Remote attacker ... oval:org.secpod.oval:def:2664 The host is missing a critical security update according to Microsoft bulletin, MS08-022. The update is required to fix a remote code execution vulnerability. A flaw is present in (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 20 ... oval:org.secpod.oval:def:2666 The host is missing a critical security update according to Microsoft security bulletin, MS08-072. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Word and Microsoft Office Outlook, which allows remote code execution if a user opens a sp ... oval:org.secpod.oval:def:2665 The host is missing a critical security update according to Microsoft security bulletin, MS08-041. The update is required to fix remote code execution vulnerability. A flaw is present in the ActiveX control for the Snapshot Viewer for Microsoft Access, which fails to handle a specially crafted Web p ... oval:org.secpod.oval:def:2668 The host is missing a critical security update according to Microsoft security bulletin, MS10-014. The update is required to fix denial of service vulnerability. A flaw is present in the Kerberos server, which fails to handle Ticket-Granting-Ticket renewal requests by a client. Successful exploitati ... oval:org.secpod.oval:def:2667 The host is missing a critical security update according to Microsoft security bulletin, MS08-051. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office PowerPoint and Microsoft Office PowerPoint Viewer, which fails handle a specially crafted ... oval:org.secpod.oval:def:923 The host is missing an critical security update according to Microsoft security bulletin, MS11-035. The update is required to fix remote code execution vulnerability in Microsoft Windows server 2003, 2008 and 2008R2. A flaw is present in the application which is caused by a logic error in the Window ... oval:org.secpod.oval:def:926 The host is missing an Important security update according to Microsoft security bulletin, MS11-036. The update is required to fix multiple remote code execution vulnerabilities in Microsoft PowerPoint or Office Compatibility Pack. The flaws are present in these applications, which fail to handle pr ... oval:org.secpod.oval:def:2645 The host is missing a critical security update according to Microsoft security bulletin, MS08-027. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Publisher, which fails handle a specially crafted Publisher file. Successful exploitation could ... oval:org.secpod.oval:def:2649 The host is missing a moderate security update according to Microsoft security bulletin, MS08-056. The update is required to fix information disclosure vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted CDO URL. Successful exploitation could allow an atta ... oval:org.secpod.oval:def:8189 The host is missing a critical security update according to Microsoft bulletin, MS12-079. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to properly parse specially crafted RTF-formatted data. Successful exploitation allows attack ... oval:org.secpod.oval:def:2650 The host is missing a critical security update according to Microsoft security bulletin, MS08-053. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Media Encoder 9 Series, which fails to handle a specially crafted Web page. Successful exploitation could ... oval:org.secpod.oval:def:2655 The host is missing an important security update according to Microsoft security bulletin, MS08-006. The update is required to fix remote code execution vulnerability. A flaw is present in Internet Information Services (IIS), which fails to handle input to ASP Web pages. Successful exploitation coul ... oval:org.secpod.oval:def:2654 The host is missing an important security update according to Microsoft security bulletin, MS08-005. The update is required to fix privilege escalation vulnerability. A flaw is present in Internet Information Services (IIS), which fails to handle file change notifications in the FTPRoot, NNTPFile\Ro ... oval:org.secpod.oval:def:2659 The host is missing an important security update according to Microsoft security bulletin, MS08-003. The update is required to fix denial of service vulnerability. A flaw is present in implementations of Active Directory on Microsoft Windows 2000 Server and Windows Server 2003 and Active Directory ... oval:org.secpod.oval:def:4748 The host is missing an important security update according to MS12-021. The update is required to fix elevation of privilege vulnerability. A flaw is present in the applications, which is caused due to the insecure loading of add-ins from within Visual Studio. Successful exploitation allows remote a ... oval:org.secpod.oval:def:1363 The host is missing an Important security update according to Microsoft security bulletin, MS11-049. The update is required to fix information disclosure vulnerability in Microsoft InfoPath 2007 or Microsoft InfoPath 2010 or SQL Server 2005 or SQL Server 2008 or SQL Server 2008 R2 or Microsoft Visua ... oval:org.secpod.oval:def:1571 The host is missing a critical security update according to Microsoft security bulletin, MS10-038. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel and Compatibility Pack, which fails to parse a specially crafted Excel files. Succ ... oval:org.secpod.oval:def:5619 The host is missing an important security update according to Microsoft bulletin, MS12-030. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle a crafted spreadsheet. Successful exploitation could allow remote attackers to execute a ... oval:org.secpod.oval:def:7325 The host is missing an Important security update according to Microsoft security bulletin, MS12-070. The update is required to fix privilege escalation vulnerability in SQL Server. A flaw is present in SQL Server running SQL Server Reporting Services, which fails to handle SQL Server Report Manager ... oval:org.secpod.oval:def:2049 The host is missing a critical security update according to Microsoft security bulletin, MS10-079. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Windows Word, which fails to validate Word document. Successful exploitation could allow an attack ... oval:org.secpod.oval:def:2282 The host is missing a critical security update according to Microsoft security bulletin, MS09-010. The update is required to fix memory corruption in WordPad and Office Text Converter. Multiple flaws are present due to which applications fail to process specially crafted Word 6 file, Word 97 documen ... oval:org.secpod.oval:def:2038 The host is missing a critical security update according to Microsoft security bulletin, MS10-056. The update is required to fix code execution vulnerabilities. Multiple flaws are present in the Office Word in Microsoft Windows, which fails to handle malformed records in a Word file. Successful expl ... oval:org.secpod.oval:def:2357 The host is missing a critical security update according to Microsoft security bulletin, MS09-024. The update is required to fix remote code execution vulnerability in Microsoft Works Converters. A flaw is present in the Microsoft Works Converters, which fails handle a specially crafted Works file. ... oval:org.secpod.oval:def:2559 The host is missing a critical security update according to Microsoft security bulletin, MS09-027. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Word, which fails to handle a specially crafted Word file. Successful exploitation all ... oval:org.secpod.oval:def:2638 The host is missing an important security update according to Microsoft security bulletin, MS09-073. The update is required to fix remote code execution vulnerability. A flaw is present in the text converters in Microsoft WordPad and Microsoft Office, which fails to handle a specially crafted Word 9 ... oval:org.secpod.oval:def:2567 The host is missing an important security update according to Microsoft security bulletin, MS09-068. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Word, which fails to open specially crafted Word files. Successful exploitation allows an ... oval:org.secpod.oval:def:2578 The host is missing a critical security update according to Microsoft security bulletin, MS08-042. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Word, which fails handle a specially crafted Word file. Successful exploitation could allow an attacker ... oval:org.secpod.oval:def:3092 The host is missing a critical security update according to Microsoft security bulletin, MS08-026. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Word, which fails handle a specially crafted Word file. Successful exploitation could allow an attacker ... oval:org.secpod.oval:def:3186 The host is missing a critical security update according to Microsoft security bulletin, MS08-009. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Word, which fails to handle a specially crafted Word file. Successful exploitation could allow an attacke ... oval:org.secpod.oval:def:3404 The host is missing an important security update according to Microsoft security bulletin, MS08-029. The update is required to fix denial of service vulnerabilities. The flaws are present due to specially crafted file that could allow denial of service when received by the target computer system and ... oval:org.secpod.oval:def:2299 The host is missing a critical security update according to Microsoft security bulletin, MS09-060. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office, which validates the ATL ... oval:org.secpod.oval:def:2617 The host is missing a moderate security update according to Microsoft security bulletin, MS09-035. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) included with Visual Studio, which allows an attacker to force ... oval:org.secpod.oval:def:2643 The host is missing an important security update according to Microsoft security bulletin, MS09-053. The update is required to fix remote code execution vulnerabilities. The flaws are present in the FTP Service in Microsoft Internet Information Services, which fails to handle the FTP Service list op ... oval:org.secpod.oval:def:2630 The host is missing an important security update according to Microsoft bulletin, MS08-037. The update is required to fix a security bypass vulnerability. The flaws are present in the DNS client and DNS server, which fail to prevent spoofing. Successful exploitation could allow attackers to redirect ... oval:org.secpod.oval:def:1659 The host is missing a critical security update according to Microsoft security bulletin, MS10-025. The update is required to fix buffer overflow vulnerability. A flaw is present in the Windows Media Unicast Service (nsum.exe), which fails to handle specially crafted transport information network pac ... oval:org.secpod.oval:def:6199 The host is missing a critical security update according to Microsoft security bulletin, MS12-043. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to handle a specially crafted webpage. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:3715 The host is missing a critical security update according to Microsoft bulletin MS12-004. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted media files. Successful exploitation allows attackers to run ar ... oval:org.secpod.oval:def:3633 The host is missing a critical security update according to Microsoft security bulletin, MS11-100. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the applications, which fail to properly handle the Forms Authentication feature in ASP.NET subsy ... oval:org.secpod.oval:def:3436 The host is missing an important security update according to Microsoft bulletin, MS11-095.The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted application when run by an authenticated attacker. Successful exploita ... oval:org.secpod.oval:def:3426 The host is missing an important security update according to Microsoft security bulletin, MS11-097. The update is required to fix elevation of privilege vulnerability. A flaw is present in the Client/Server Run-time Subsystem (CSRSS), which fails to properly validate permissions when a lower-integr ... oval:org.secpod.oval:def:2547 The host is missing a critical security update according to Microsoft security bulletin, MS11-078. The update is required to fix a remote code execution vulnerability. Flaws are present in the Microsoft .NET Framework and Microsoft Silverlight, which fails to handle specially crafted web pages by a ... oval:org.secpod.oval:def:1755 The host is missing a moderatesecurity update according to Microsoft security bulletin, MS11-069. The update is required to fix an information disclosure vulnerability. A flaw is present in the applications which fails to properly validate the trust level within the System.Net.Sockets namespace. Suc ... oval:org.secpod.oval:def:2271 The host is missing an Important security update according to Microsoft security bulletin, MS11-074. The update is required to fix cross-site-scripting and information disclosure vulnerabilities. A flaw is present in the applications, which fails to properly validate inputs. Successful exploitation ... oval:org.secpod.oval:def:1380 The host is missing a critical security update according to Microsoft security bulletin, MS10-082. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Windows Media Player (WMP), which fails to deallocate objects during a browser reload action. Succe ... oval:org.secpod.oval:def:2669 The host is missing a critical security update according to Microsoft security bulletin, MS10-035. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer, which fails to handle objects in memory, sanitize HTML scripts and improper data caching. Successful ... oval:org.secpod.oval:def:3297 The host is missing a critical security update according to Microsoft security bulletin, MS10-033. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows Media Decompression, which fails to parse a crafted media file or streaming content. ... oval:org.secpod.oval:def:1990 The host is missing a critical security update according to Microsoft security bulletin, MS10-034. The update is required to fix remote code execution vulnerability. A flaw is present in the activex control iedvtool.dll and max3activex.dll, which fails to handle specially crafted Web page. Successfu ... oval:org.secpod.oval:def:1447 The host is missing a critical security update according to Microsoft security bulletin, MS10-032. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows kernel-mode drivers, which fails to validate callback parameter and the way it provides outlines of ... oval:org.secpod.oval:def:3246 The host is missing a critical security update according to Microsoft security bulletin, MS10-039. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Microsoft SharePoint server and Office InfoPath, which fails to validate specially crafted requests. Success ... oval:org.secpod.oval:def:2048 The host is missing a critical security update according to Microsoft security bulletin, MS10-019. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Windows cabinet file viewer shell extension and authenticode signature verification used for portable execu ... oval:org.secpod.oval:def:2033 The host is missing a critical security update according to Microsoft security bulletin, MS10-030. The update is required to fix remote code execution vulnerability. Flaws are present in Outlook Express and Windows Mail, which fails to handle a specially crafted mail responses. Successful exploitati ... oval:org.secpod.oval:def:1382 The host is missing a critical security update according to Microsoft security bulletin, MS10-037. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows OpenType Compact Font Format (CFF) driver, which fails to validate a specially crafted CFF font. Succ ... oval:org.secpod.oval:def:1585 The host is missing a critical security update according to Microsoft security bulletin, MS10-021. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows Kernel, which fails to validate specially crafted applications like the creation of symbolic links o ... oval:org.secpod.oval:def:1988 The host is missing a critical security update according to Microsoft security bulletin, MS10-026. The update is required to fix remote code execution vulnerability. A flaw is present in the MPEG Layer-3 audio codecs, which fails to decode a specially crafted AVI file containing an MPEG Layer-3 audi ... oval:org.secpod.oval:def:1584 The host is missing a critical security update according to Microsoft security bulletin, MS10-020. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Windows SMB Client, which fails to handle a specially crafted SMB response sent to a client-initiated SMB r ... oval:org.secpod.oval:def:2032 The host is missing a critical security update according to Microsoft security bulletin, MS10-018. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer, which fails to verify the origin of scripts and handle objects in memory and improper validation of l ... oval:org.secpod.oval:def:2030 The host is missing a critical security update according to Microsoft security bulletin, MS10-008. The update is required to fix remote code execution vulnerability. A flaw is present in the activex control max3activex.dll, which fails to handle specially crafted Web page. Successful exploitation al ... oval:org.secpod.oval:def:1565 The host is missing a critical security update according to Microsoft security bulletin, MS10-013. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft DirectShow, which fails to parse a specially crafted AVI file before opening it. Successful exploitatio ... oval:org.secpod.oval:def:2035 The host is missing a critical security update according to Microsoft security bulletin, MS10-012. The update is required to fix remote code execution vulnerabilities. A flaw is present in the SMB Server, which fails to validate crafted SMB requests. Successful exploitation could allow an attacker t ... oval:org.secpod.oval:def:1568 The host is missing a critical security update according to Microsoft security bulletin, MS10-006. The update is required to fix code execution vulnerabilities. Flaws are present in the SMB Client in Microsoft Windows, which fails to validate crafted response from SMB servers and man-in-the-middle a ... oval:org.secpod.oval:def:1727 The host is missing a critical security update according to Microsoft security bulletin, MS10-015. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows Kernel, which fails to handle certain exceptions. Successful exploitation could allow an attacker t ... oval:org.secpod.oval:def:1224 The host is missing a Critical security update according to Microsoft security bulletin, MS10-001. The update is required to fix remote code execution vulnerability. A flaw is present in the OpenType (EOT) Font Client which fails to properly parse specially crafted EOT fonts. Successful exploitation ... oval:org.secpod.oval:def:2513 The host is missing an critical security update according to Microsoft security bulletin, MS09-072. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle objects in memory. Successful exploitation allows an att ... oval:org.secpod.oval:def:2286 The host is missing a critical security update according to Microsoft security bulletin, MS09-071. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Microsoft Internet Authentication Service, which fails to validates authentication requests by PEAP clients ... oval:org.secpod.oval:def:2634 The host is missing an important security update according to Microsoft security bulletin, MS09-066. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Active Directory directory service, Active Directory Application Mode (ADAM), and Active Directory Li ... oval:org.secpod.oval:def:2244 The host is missing a critical security update according to Microsoft security bulletin, MS09-065. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows kernel, which fails to validate the argument passed to the system call and input passed from us ... oval:org.secpod.oval:def:2514 The host is missing a critical security update according to Microsoft security bulletin, MS09-054. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation allows a ... oval:org.secpod.oval:def:2663 The host is missing a critical security update according to Microsoft security bulletin, MS09-062. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows GDI+, which fails to validate data within GDI+ when rendering WMF images and improper ... oval:org.secpod.oval:def:2635 The host is missing a critical security update according to Microsoft security bulletin, MS09-051. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Media Runtime, which fails to process ASF files and initialize functions in compressed audio fi ... oval:org.secpod.oval:def:2565 The host is missing an important security update according to Microsoft security bulletin, MS09-056. The update is required to fix spoofing vulnerabilities. The flaws are present in the Windows CryptoAPI, which fails to validate certificate names that contain null terminators and ASN.1 object identi ... oval:org.secpod.oval:def:2566 The host is missing an important security update according to Microsoft security bulletin, MS09-058. The update is required to fix remote privilege escalation vulnerabilities. The flaws are present in the Windows kernel, which fails to validate data within an executable and clean up exceptions under ... oval:org.secpod.oval:def:2640 The host is missing a critical security update according to Microsoft security bulletin, MS09-061. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft .NET Common Language Runtime (CLR), which fails to handle interfaces and verify the rules of ... oval:org.secpod.oval:def:2636 The host is missing a critical security update according to Microsoft security bulletin, MS09-047. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Media Format, which fails to parse Advanced Systems Format (ASF) files and MPEG-1 Audio Layer 3 ... oval:org.secpod.oval:def:2561 The host is missing a critical security update according to Microsoft security bulletin, MS09-045. The update is required to fix remote code execution vulnerability. A flaw is present in JScript Scripting Engine, which fails to handle a specially crafted file or visited a specially crafted Web site ... oval:org.secpod.oval:def:2621 The host is missing a critical security update according to Microsoft security bulletin, MS09-037. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) header. Components and controls built using ATL headers fails t ... oval:org.secpod.oval:def:2297 The host is missing a critical security update according to Microsoft security bulletin, MS09-038. The update is required to fix remote code execution vulnerabilities in Windows Media File Processing. The flaws are present in the Windows Media file processing, which fails to handle a specially craft ... oval:org.secpod.oval:def:2298 The host is missing a critical security update according to Microsoft security bulletin, MS09-055. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls. Successful exploitation allows an attacker to ... oval:org.secpod.oval:def:2371 The host is missing an important security update according to Microsoft security bulletin, MS09-042. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Telnet service, which fails validate authentication replies and allows for the relay of credentials ... oval:org.secpod.oval:def:2642 The host is missing a critical security update according to Microsoft security bulletin, MS09-044. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Remote Desktop Connection, which fails to processes specific parameters returned by the RDP serve ... oval:org.secpod.oval:def:2375 The host is missing a critical security update according to Microsoft security bulletin, MS09-034. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation allows a ... oval:org.secpod.oval:def:2359 The host is missing a important security update according to Microsoft security bulletin, MS09-025. The update is required to fix elevation escalation vulnerabilities in windows. A flaw is present in the Windows kernel , which fails to handle specific kernel object. Successful exploitation could all ... oval:org.secpod.oval:def:2294 The host is missing a critical security update according to Microsoft security bulletin, MS09-022. The update is required to fix remote code execution vulnerability in Windows. A flaw is present in the Windows Print Spooler, which fails handle specially crafted RPC request. Successful exploitation c ... oval:org.secpod.oval:def:2612 The host is missing a security update according to Microsoft security bulletin, MS09-007. The update is required to fix Secure Channel (aka SChannel) authentication component in Microsoft Windows platforms. When certificate authentication is used and does not properly validate the client's key excha ... oval:org.secpod.oval:def:2557 The host is missing a critical security update according to Microsoft security bulletin, MS09-006. The update is required to fix remote code execution vulnerabilities. A flaw is present in the Windows kernel, which fails to handle specially crafted EMF or WMF image file. Successful exploitation coul ... oval:org.secpod.oval:def:2641 The host is missing an Important security update according to Microsoft security bulletin, MS09-012. The update is required to fix elevation of privilege vulnerabilities. The flaws are present in the Microsoft Windows, which fails to address tokens requested by the Microsoft Distributed Transaction ... oval:org.secpod.oval:def:2361 The host is missing a critical security update according to Microsoft security bulletin, MS09-001. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in the Microsoft Server Message Block (SMB) Protocol, which fails handle specially crafted SMB ... oval:org.secpod.oval:def:3052 The host is missing a critical security update according to Microsoft security bulletin, MS08-073. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation all ... oval:org.secpod.oval:def:2992 The host is missing a critical security update according to Microsoft security bulletin, MS08-071. The update is required to fix remote code execution vulnerabilities. The flaws are present in GDI, which fails to handle a specially crafted WMF image file. Successful exploitation allows attackers to ... oval:org.secpod.oval:def:2607 The host is missing an important security update according to Microsoft security bulletin, MS08-068. The update is required to fix remote code execution vulnerability. The flaw is present in Microsoft Server Message Block (SMB) Protocol, which allows an attacker to successfully exploit this vulnera ... oval:org.secpod.oval:def:3095 The host is missing an important security update according to Microsoft security bulletin, MS08-076. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in Windows Media Components, which fails to handle Service Principal Name (SPN) implementations and ... oval:org.secpod.oval:def:2670 The host is missing a critical security update according to Microsoft security bulletin, MS08-069. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft XML Core Services, which fails to handle a specially crafted Web page. Successful exploitation co ... oval:org.secpod.oval:def:2625 The host is missing an important security update according to Microsoft bulletin, MS08-063. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle sharing of files and folders. Successful exploitation could allow attackers to ... oval:org.secpod.oval:def:2583 The host is missing a critical security update according to Microsoft security bulletin, MS08-057. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application which fails to properly handle specially crafted Excel file. Successful exploitati ... oval:org.secpod.oval:def:2633 The host is missing an important security update according to Microsoft bulletin, MS08-061. The update is required to fix a Windows kerne vulnerability. A flaw is present in Windows kernel, which improperly validating input passed from user mode to the kernel during the new window creation process. ... oval:org.secpod.oval:def:2622 The host is missing a critical security update according to Microsoft security bulletin, MS08-021. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly process a malformed header or a malformed file name param ... oval:org.secpod.oval:def:2624 The host is missing a critical security update according to Microsoft bulletin, MS08-031. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted web page. Successful exploitation could allow at ... oval:org.secpod.oval:def:2651 The host is missing an important security update according to Microsoft security bulletin, MS08-025. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows kernel, which fails to handle validation of inputs passed from user mode. Successful exploitation co ... oval:org.secpod.oval:def:2236 The host is missing a critical security update according to Microsoft security bulletin, MS10-017. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Excel, which fails to parse a specially crafted Excel files. Successful exploitation could all ... oval:org.secpod.oval:def:2628 The host is missing a critical security update according to Microsoft bulletin, MS08-010. The update is required to fix multple remote code execution vulnerabilities. A flaw is present in the application, which fails to handle specially crafted Web page. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:2284 The host is missing a critical security update according to Microsoft security bulletin, MS09-064. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft License Logging Server, which fails to handle specially crafted RPC packets. Successful exploitatio ... oval:org.secpod.oval:def:2577 The host is missing a critical security update according to Microsoft security bulletin, MS09-029. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows component, the Embedded OpenType (EOT) Font Engine, which fails to parse data records ... oval:org.secpod.oval:def:2653 The host is missing a critical security update according to Microsoft security bulletin, MS09-019. The update is required to fix Information Disclosure Vulnerability. A flaw is present in Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation could allow an at ... oval:org.secpod.oval:def:2631 The host is missing a critical security update according to Microsoft bulletin, MS08-058. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web page. Successful exploitation could allow attackers to execute arbitrary cod ... oval:org.secpod.oval:def:2637 The host is missing an important security update according to Microsoft bulletin, MS08-014. The update is required to fix a remote code execution vulnerability. A flaw is present in the way excel processes data validation records when loading Excel files into memory. Successfully exploitation could ... oval:org.secpod.oval:def:2031 The host is missing a critical security update according to Microsoft security bulletin, MS10-002. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer which fails to handle objects in memory, input parameters and HTML attributes. Successful exploitation ... oval:org.secpod.oval:def:2370 The host is missing a critical security update according to Microsoft security bulletin, MS09-014. The update is required to fix remote code execution vulnerabilities. A flaw is present in the Windows Internet Explorer, which fails to handle specially crafted Web page. Successful exploitation could ... oval:org.secpod.oval:def:2358 The host is missing moderate security update according to Microsoft security bulletin, MS09-015. The update is required to fix Blended Threat Vulnerability. A flaw is present in SearchPath function in Windows locates, which allows by convincing a user to download a specially crafted file to a specif ... oval:org.secpod.oval:def:2558 The host is missing a critical security update according to Microsoft security bulletin, MS09-013. The update is required to fix remote code execution vulnerability in Windows HTTP Services. A flaw is present in the Windows HTTP Services(WinHTTP), which fails handle http service file winhttp.dll. Su ... oval:org.secpod.oval:def:2581 The host is missing a moderate security update according to Microsoft security bulletin, MS08-032. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Speech API, which fails handle a specially crafted Web page using Internet Explorer and has the Spe ... oval:org.secpod.oval:def:2584 The host is missing an important security update according to Microsoft security bulletin, MS08-020. The update is required to fix spoofing attack vulnerability. A flaw is present in Windows DNS clients, which fails handle a specially crafted responses to DNS requests. Successful exploitation could ... oval:org.secpod.oval:def:2725 The host is missing a critical security update according to Microsoft security bulletin, MS08-016. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office, which fails to handle a malformed Office file. Successful exploitation could allow an att ... oval:org.secpod.oval:def:2040 The host is missing a critical security update according to Microsoft security bulletin, MS10-063. The update is required to fix code execution vulnerability. A flaw is present in the Unicode Script Processor implementation in USP10.DLL in Microsoft Windows, which is due to two array-indexing errors ... oval:org.secpod.oval:def:3339 The host is missing a critical security update according to Microsoft security bulletin, MS08-052. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Windows GDI+, which fails handle a specially crafted image file or browsed a Web site that contai ... oval:org.secpod.oval:def:2374 The host is missing a critical security update according to Microsoft security bulletin, MS09-043. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Web Components, which fails to handle a specially crafted Web page. Successful exploit ... oval:org.secpod.oval:def:2660 The host is missing a critical security update according to Microsoft security bulletin, MS09-044. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Filters, which fails to handle a specially crafted image file. Successful exploitation cou ... oval:org.secpod.oval:def:997 The host is missing an important security update according to Microsoft security bulletin, MS11-025. The update is required to fix remote code execution vulnerability in Microsoft Visual Studio 2005, 2008, 2010 or Visual Studio .NET 2003 or Visual C++ 2005, Visual C++ 2008, Visual C++ 2010 Redistri ... |