[Forgot Password]
Login  Register Subscribe

23631

 
 

121574

 
 

98503

 
 

909

 
 

79321

 
 

109

Paid content will be excluded from the download.


Download | Alert*


oval:org.secpod.oval:def:1741
The host is missing an important security update according to Microsoft security bulletin, MS11-056. The update is required to fix elevation of privilege vulnerability in Windows Client/Server Run-time Subsystem. The flaw is present in Client/Server Run-time Subsystem (CSRSS), which fails to restric ...

oval:org.secpod.oval:def:3418
The host is missing an important security update according to Microsoft bulletin, MS11-088. The update is required to fix a privilege escalation vulnerability. A flaw is present in the application, which fails to properly set configuration options. Successful exploitation could allow attackers to ex ...

oval:org.secpod.oval:def:2563
The host is missing a critical security update according to Microsoft security bulletin, MS09-052. The update is required to fix remote code execution vulnerability in Windows Media Player. A flaw is present in the Windows Media Player, which fails handle a specially crafted ASF file. Successful exp ...

oval:org.secpod.oval:def:2041
The host is missing a critical security update according to Microsoft security bulletin, MS10-004. The update is required to fix multiple vulnerabilities. Multiple flaws are present in the Office PowerPoint on Microsoft Windows, which fails to validate crafted PowerPoint document. Successful exploit ...

oval:org.secpod.oval:def:2037
The host is missing a critical security update according to Microsoft security bulletin, MS10-023. The update is required to fix buffer overflow vulnerability. A flaw is present in the Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploitation allow ...

oval:org.secpod.oval:def:1214
The host is missing a Critical security update according to Microsoft security bulletin, MS10-051. The update is required to fix remote code execution vulnerability. The flaw is present in the Microsoft XML Core Services (MSXML) which fails to handle HTTP responses. Successful exploitation allows an ...

oval:org.secpod.oval:def:1416
The host is missing an Important security update according to Microsoft security bulletin, MS11-055. The update is required to fix remote code execution vulnerability in Microsoft Visio 2003. A flaw is present in the application which can be triggered while opening legitimate Visio file that is loca ...

oval:org.secpod.oval:def:989
The host is missing an Important security update according to Microsoft security bulletin, MS11-016. The update is required to fix remote code execution vulnerability in Microsoft Groove 2007 Service Pack 2. A flaw is present in the application, which incorrectly restricts the path used for loading ...

oval:org.secpod.oval:def:1384
The host is missing a critical security update according to Microsoft security bulletin, MS10-077. The update is required to fix remote code execution vulnerability. A flaw is present in the .NET Framework, which is due to an unspecified error in the JIT compiler while optimizing code. Successful ex ...

oval:org.secpod.oval:def:1219
The host is missing a Critical security update according to Microsoft security bulletin, MS10-106. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Exchange Server which fails to handle specially-crafted RPC request when the Mailbox Server role is ass ...

oval:org.secpod.oval:def:1175
The host is missing a Critical security update according to Microsoft security bulletin, MS11-040. The update is required to fix denial of service vulnerability. A flaw is present in the application which fails to handle specially crafted request. Successful exploitation allows remote attackers to e ...

oval:org.secpod.oval:def:1755
The host is missing a moderatesecurity update according to Microsoft security bulletin, MS11-069. The update is required to fix an information disclosure vulnerability. A flaw is present in the applications which fails to properly validate the trust level within the System.Net.Sockets namespace. Suc ...

oval:org.secpod.oval:def:3405
The host is missing an important security update according to Microsoft security bulletin, MS11-096. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted Excel file. Successful exploitation could allow an ...

oval:org.secpod.oval:def:3724
The host is missing an important security update according to Microsoft bulletin, MS12-007. The update is required to fix a cross site scripting vulnerability. A flaw is present in the application, which fails to properly evaluate characters after the detection of a Cascading Style Sheets (CSS) esca ...

oval:org.secpod.oval:def:4155
The host is missing an important security update according to Microsoft security bulletin, MS12-015. The update is required to fix remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle specially crafted Visio files. Successful exploitation al ...

oval:org.secpod.oval:def:6024
The host is missing a critical security update according to Microsoft bulletin, MS12-038. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which fails to properly execute a function pointer. Successful exploitation allows attackers to take comp ...

oval:org.secpod.oval:def:6964
The host is missing an important security update according to Microsoft bulletin, MS12-061. The update is required to fix a cross site scripting vulnerability. A flaw is present in the application, which fails to handle an unspecified parameter. Successful exploitation could allow attackers to injec ...

oval:org.secpod.oval:def:6969
The host is installed is missing an important security update according to Microsoft security bulletin, MS12-062. The update is required to fix a privilege escalation vulnerability. A flaw is present in the application, which fails to handle a specially crafted URL. Successful exploitation allows at ...

oval:org.secpod.oval:def:2298
The host is missing a critical security update according to Microsoft security bulletin, MS09-055. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls. Successful exploitation allows an attacker to ...

oval:org.secpod.oval:def:2513
The host is missing an critical security update according to Microsoft security bulletin, MS09-072. The update is required to fix multiple memory corruption vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle objects in memory. Successful exploitation allows an att ...

oval:org.secpod.oval:def:2636
The host is missing a critical security update according to Microsoft security bulletin, MS09-047. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Media Format, which fails to parse Advanced Systems Format (ASF) files and MPEG-1 Audio Layer 3 ...

oval:org.secpod.oval:def:2292
The host is missing an important security update according to Microsoft security bulletin, MS09-057. The update is required to fix remote code execution vulnerability. A flaw is present in the ActiveX control included with Windows Indexing Service, which fails to handle specifically crafted Web cont ...

oval:org.secpod.oval:def:2638
The host is missing an important security update according to Microsoft security bulletin, MS09-073. The update is required to fix remote code execution vulnerability. A flaw is present in the text converters in Microsoft WordPad and Microsoft Office, which fails to handle a specially crafted Word 9 ...

oval:org.secpod.oval:def:2591
The host is missing an important security update according to Microsoft security bulletin, MS09-070. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Directory Federation Services (ADFS), which fails to validate request headers when a ...

oval:org.secpod.oval:def:2565
The host is missing an important security update according to Microsoft security bulletin, MS09-056. The update is required to fix spoofing vulnerabilities. The flaws are present in the Windows CryptoAPI, which fails to validate certificate names that contain null terminators and ASN.1 object identi ...

oval:org.secpod.oval:def:2296
The host is missing an important security update according to Microsoft security bulletin, MS09-059. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Windows Local Security Authority Subsystem Service (LSASS), which fails handle malformed packets duri ...

oval:org.secpod.oval:def:2291
The host is missing a critical security update according to Microsoft security bulletin, MS09-046. The update is required to fix remote code execution vulnerability. A flaw is present in the DHTML Editing Component ActiveX control , which fails to handle a specially crafted Web page. Successful expl ...

oval:org.secpod.oval:def:2566
The host is missing an important security update according to Microsoft security bulletin, MS09-058. The update is required to fix remote privilege escalation vulnerabilities. The flaws are present in the Windows kernel, which fails to validate data within an executable and clean up exceptions under ...

oval:org.secpod.oval:def:2643
The host is missing an important security update according to Microsoft security bulletin, MS09-053. The update is required to fix remote code execution vulnerabilities. The flaws are present in the FTP Service in Microsoft Internet Information Services, which fails to handle the FTP Service list op ...

oval:org.secpod.oval:def:2285
The host is missing a critical security update according to Microsoft security bulletin, MS09-067. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle malformed records. Successful exploitation allows an atta ...

oval:org.secpod.oval:def:2567
The host is missing an important security update according to Microsoft security bulletin, MS09-068. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Word, which fails to open specially crafted Word files. Successful exploitation allows an ...

oval:org.secpod.oval:def:2250
The host is missing a critical security update according to Microsoft security bulletin, MS09-069. The update is required to fix denial of service condition. A flaw is present in the Windows Local Security Authority Subsystem Service (LSASS), which fails to handle specially crafted ISAKMP messages c ...

oval:org.secpod.oval:def:2188
The host is missing a critical security update according to Microsoft security bulletin, MS10-024. The update is required to fix denial of service vulnerabilities. Flaws are present in Microsoft Exchange and SMTP service Office Excel. SMTP service fails to handle a specially crafted DNS response sen ...

oval:org.secpod.oval:def:1588
The host is missing a critical security update according to Microsoft security bulletin, MS10-011. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows Client/Server Run-time Subsystem (CSRSS), which fails to terminate user processes when a user logs out ...

oval:org.secpod.oval:def:1224
The host is missing a Critical security update according to Microsoft security bulletin, MS10-001. The update is required to fix remote code execution vulnerability. A flaw is present in the OpenType (EOT) Font Client which fails to properly parse specially crafted EOT fonts. Successful exploitation ...

oval:org.secpod.oval:def:1568
The host is missing a critical security update according to Microsoft security bulletin, MS10-006. The update is required to fix code execution vulnerabilities. Flaws are present in the SMB Client in Microsoft Windows, which fails to validate crafted response from SMB servers and man-in-the-middle a ...

oval:org.secpod.oval:def:2031
The host is missing a critical security update according to Microsoft security bulletin, MS10-002. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer which fails to handle objects in memory, input parameters and HTML attributes. Successful exploitation ...

oval:org.secpod.oval:def:1567
The host is missing a critical security update according to Microsoft security bulletin, MS10-005. The update is required to fix integer overflow vulnerability. A flaw is present in the Paint in Microsoft Windows, which fails to validate crafted JPEG (.JPG) file. Successful exploitation could allow ...

oval:org.secpod.oval:def:1569
The host is missing a critical security update according to Microsoft security bulletin, MS10-007. The update is required to fix code execution vulnerability. A flaw is present in the ShellExecute API function in Microsoft Windows, which fails to validate user supplied input parameters. Successful e ...

oval:org.secpod.oval:def:2668
The host is missing a critical security update according to Microsoft security bulletin, MS10-014. The update is required to fix denial of service vulnerability. A flaw is present in the Kerberos server, which fails to handle Ticket-Granting-Ticket renewal requests by a client. Successful exploitati ...

oval:org.secpod.oval:def:1727
The host is missing a critical security update according to Microsoft security bulletin, MS10-015. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows Kernel, which fails to handle certain exceptions. Successful exploitation could allow an attacker t ...

oval:org.secpod.oval:def:1585
The host is missing a critical security update according to Microsoft security bulletin, MS10-021. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows Kernel, which fails to validate specially crafted applications like the creation of symbolic links o ...

oval:org.secpod.oval:def:1566
The host is missing a critical security update according to Microsoft security bulletin, MS10-003. The update is required to fix buffer overflow vulnerability. A flaw is present in the MSO.dll in Office XP, which fails to validate crafted Office document. Successful exploitation could allow an attac ...

oval:org.secpod.oval:def:2030
The host is missing a critical security update according to Microsoft security bulletin, MS10-008. The update is required to fix remote code execution vulnerability. A flaw is present in the activex control max3activex.dll, which fails to handle specially crafted Web page. Successful exploitation al ...

oval:org.secpod.oval:def:1990
The host is missing a critical security update according to Microsoft security bulletin, MS10-034. The update is required to fix remote code execution vulnerability. A flaw is present in the activex control iedvtool.dll and max3activex.dll, which fails to handle specially crafted Web page. Successfu ...

oval:org.secpod.oval:def:1570
The host is missing a critical security update according to Microsoft security bulletin, MS10-028. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Visio, which fails to validate attributes and index calculation of a specially crafted Visio f ...

oval:org.secpod.oval:def:1565
The host is missing a critical security update according to Microsoft security bulletin, MS10-013. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft DirectShow, which fails to parse a specially crafted AVI file before opening it. Successful exploitatio ...

oval:org.secpod.oval:def:2032
The host is missing a critical security update according to Microsoft security bulletin, MS10-018. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer, which fails to verify the origin of scripts and handle objects in memory and improper validation of l ...

oval:org.secpod.oval:def:1379
The host is missing a Critical security update according to Microsoft security bulletin, MS10-045. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Outlook, which fails to verify attachments in a specially crafted e-mail message. Successful ...

oval:org.secpod.oval:def:2236
The host is missing a critical security update according to Microsoft security bulletin, MS10-017. The update is required to fix remote code execution vulnerabilities. Flaws are present in Microsoft Office Excel, which fails to parse a specially crafted Excel files. Successful exploitation could all ...

oval:org.secpod.oval:def:1584
The host is missing a critical security update according to Microsoft security bulletin, MS10-020. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Windows SMB Client, which fails to handle a specially crafted SMB response sent to a client-initiated SMB r ...

oval:org.secpod.oval:def:2034
The host is missing a critical security update according to Microsoft security bulletin, MS10-022. The update is required to fix remote code execution vulnerability. A flaw is present in VBScript engine, which fails to process WIndows help files in protected mode. User is forced to press the F1 key ...

oval:org.secpod.oval:def:1988
The host is missing a critical security update according to Microsoft security bulletin, MS10-026. The update is required to fix remote code execution vulnerability. A flaw is present in the MPEG Layer-3 audio codecs, which fails to decode a specially crafted AVI file containing an MPEG Layer-3 audi ...

oval:org.secpod.oval:def:2048
The host is missing a critical security update according to Microsoft security bulletin, MS10-019. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Windows cabinet file viewer shell extension and authenticode signature verification used for portable execu ...

oval:org.secpod.oval:def:1047
The host is missing an critical security update according to Microsoft security bulletin, MS11-027. The update is required to fix remote code execution vulnerability in Microsoft Internet Explorer. The flaws are present in the application which fails to handle memory corruption, an input validation. ...

oval:org.secpod.oval:def:1455
The host is missing a critical security update according to Microsoft security bulletin, MS10-071. The update is required to fix multiple vulnerabilities. Multiple flaws are present in Microsoft Internet Explorer, which fails to handle unspecified special characters in CSS documents. Successful expl ...

oval:org.secpod.oval:def:1457
The host is missing a critical security update according to Microsoft security bulletin, MS10-029. The update is required to fix address spoofing vulnerability. A flaw is present in the ISATAP Component, which fails to check the inner packet's IPv6 source address in a tunneled ISATAP packets. Succes ...

oval:org.secpod.oval:def:2064
The host is missing a critical security update according to Microsoft security bulletin, MS10-062. The update is required to fix code execution vulnerability. A flaw is present in the MPEG-4 codec in the Windows Media codecs in Microsoft Windows, which fails to handle crafted media content with MPEG ...

oval:org.secpod.oval:def:2079
The host is missing a critical security update according to Microsoft security bulletin, MS10-068. The update is required to fix heap-based buffer overflow vulnerability. A flaw is present in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows, which fails to validate malform ...

oval:org.secpod.oval:def:2033
The host is missing a critical security update according to Microsoft security bulletin, MS10-030. The update is required to fix remote code execution vulnerability. Flaws are present in Outlook Express and Windows Mail, which fails to handle a specially crafted mail responses. Successful exploitati ...

oval:org.secpod.oval:def:1522
The host is missing a critical security update according to Microsoft security bulletin, MS10-031. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Visual Basic for Applications, which fails to search for ActiveX Controls embedded in documents. Su ...

oval:org.secpod.oval:def:1382
The host is missing a critical security update according to Microsoft security bulletin, MS10-037. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows OpenType Compact Font Format (CFF) driver, which fails to validate a specially crafted CFF font. Succ ...

oval:org.secpod.oval:def:3246
The host is missing a critical security update according to Microsoft security bulletin, MS10-039. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Microsoft SharePoint server and Office InfoPath, which fails to validate specially crafted requests. Success ...

oval:org.secpod.oval:def:1523
The host is missing a Critical security update according to Microsoft security bulletin, MS10-040. The update is required to fix remote code execution vulnerability. A flaw is present in the Internet Information Services (IIS), which fails to validate a specially crafted HTTP request. Successful exp ...

oval:org.secpod.oval:def:1571
The host is missing a critical security update according to Microsoft security bulletin, MS10-038. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel and Compatibility Pack, which fails to parse a specially crafted Excel files. Succ ...

oval:org.secpod.oval:def:2669
The host is missing a critical security update according to Microsoft security bulletin, MS10-035. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer, which fails to handle objects in memory, sanitize HTML scripts and improper data caching. Successful ...

oval:org.secpod.oval:def:1447
The host is missing a critical security update according to Microsoft security bulletin, MS10-032. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows kernel-mode drivers, which fails to validate callback parameter and the way it provides outlines of ...

oval:org.secpod.oval:def:3187
The host is missing a critical security update according to Microsoft security bulletin, MS10-036. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office, which fails to validate COM objects to be instantiated. Successful exploitation allows an a ...

oval:org.secpod.oval:def:1381
The host is missing a critical security update according to Microsoft security bulletin, MS10-083. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Shell and WordPad in Microsoft Windows, which fails to validate COM objects during instantiation. Suc ...

oval:org.secpod.oval:def:1390
The host is missing a critical security update according to Microsoft security bulletin, MS10-076. The update is required to fix integer overflow vulnerability. A flaw is present in the Embedded OpenType (EOT) Font Engine (t2embed.dll) in Microsoft Windows, which fails to parse 'hdmx' records in an ...

oval:org.secpod.oval:def:3297
The host is missing a critical security update according to Microsoft security bulletin, MS10-033. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows Media Decompression, which fails to parse a crafted media file or streaming content. ...

oval:org.secpod.oval:def:1215
The host is missing a Critical security update according to Microsoft security bulletin, MS10-052. The update is required to fix remote code execution vulnerability. MPEG Layer-3 audio codecs which fails to handle a specially crafted media file or streaming contents. Successful exploitation allows a ...

oval:org.secpod.oval:def:1372
The host is missing a critical security update according to Microsoft security bulletin, MS10-042. The update is required to fix URL validation vulnerability. A flaw is present in the Windows Help and Support Center feature, which fails to validate specially crafted URLs. Successful exploitation all ...

oval:org.secpod.oval:def:1375
The host is missing a critical security update according to Microsoft security bulletin, MS10-048. The update is required to fix privilege escalation vulnerabilities. Flaws are present in the Windows Kernel-Mode Drivers, which fails to validate specially crafted applications. Successful exploitatio ...

oval:org.secpod.oval:def:1454
The host is missing a critical security update according to Microsoft security bulletin, MS10-069. The update is required to fix privilege escalation vulnerability. A flaw is present in the Client/Server Runtime Subsystem (CSRSS) in Win32 subsystem, which fails to allocate memory for transactions. S ...

oval:org.secpod.oval:def:2038
The host is missing a critical security update according to Microsoft security bulletin, MS10-056. The update is required to fix code execution vulnerabilities. Multiple flaws are present in the Office Word in Microsoft Windows, which fails to handle malformed records in a Word file. Successful expl ...

oval:org.secpod.oval:def:2585
The host is missing a critical security update according to Microsoft security bulletin, MS10-060. The update is required to fix code execution vulnerability. A flaw is present in the CLR Virtual Method (CLR) in Microsoft .NET Framework, which fails to handle interfaces and delegations to virtual me ...

oval:org.secpod.oval:def:1589
The host is missing a critical security update according to Microsoft security bulletin, MS10-065. The update is required to fix multiple vulnerability. Multiple flaws are present in the asp.dll in Internet Information Services (IIS) in Microsoft Windows, which is due to improper ASP implementation ...

oval:org.secpod.oval:def:1520
The host is missing a critical security update according to Microsoft security bulletin, MS10-073. The update is required to fix privilege escalation vulnerability. A flaw is present in the Win32k.sys in Kernel-Mode drivers in the Microsoft Windows, which fails to load keyboard layouts from disk or ...

oval:org.secpod.oval:def:1575
The host is missing a critical security update according to Microsoft security bulletin, MS10-054. The update is required to fix code execution vulnerabilities. Multiple flaws are present in the SMB Server in Microsoft Windows, which fails to validate fields in a SMB request. Successful exploitation ...

oval:org.secpod.oval:def:2039
The host is missing a critical security update according to Microsoft security bulletin, MS10-057. The update is required to fix code execution vulnerability. A flaw is present in the Office Excel in Microsoft Windows, which fails to parse the Excel file format. Successful exploitation could allow a ...

oval:org.secpod.oval:def:1245
The host is missing a critical security update according to Microsoft security bulletin, MS10-049. The update is required to fix remote code execution vulnerabilities. Flaws are present in the the Secure Channel (SChannel) which fails to validate a malformed certificate request message sent by the s ...

oval:org.secpod.oval:def:1453
The host is missing a critical security update according to Microsoft security bulletin, MS10-067. The update is required to fix memory corruption vulnerability. A flaw is present in the Word 97 text converter in the WordPad Text Converters in Microsoft Windows, which fails to evaluate malformed str ...

oval:org.secpod.oval:def:1216
The host is missing a Critical security update according to Microsoft security bulletin, MS10-053. The update is required to fix multiple vulnerabilities. Flaws are present in the Internet Explorer which fails to properly access an object that has not been correctly initialized or has been deleted.. ...

oval:org.secpod.oval:def:1377
The host is missing a critical security update according to Microsoft security bulletin, MS10-087. The update is required to fix multiple remote code execution vulnerabilities. Flaws are in Microsoft Office, which fails to validate crafted RTF data, msofbtSp records and unspecified flags. Successful ...

oval:org.secpod.oval:def:1378
The host is missing a Critical security update according to Microsoft security bulletin, MS10-046. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Shell, which fails to parse a malicious shortcut file and executes a malicious code when the operatin ...

oval:org.secpod.oval:def:1368
The host is missing a critical security update according to Microsoft security bulletin, MS10-088. The update is required to fix multiple buffer overflow vulnerabilities. Multiple flaws are present in PP7X32.DLL in Microsoft PowerPoint, which fails to validate crafted PowerPoint document. Successful ...

oval:org.secpod.oval:def:1452
The host is missing a critical security update according to Microsoft security bulletin, MS10-066. The update is required to fix code execution vulnerability. A flaw is present in the Remote Procedure Call (RPC) client implementation in Microsoft Windows, which fails to handle specially-crafted RPC ...

oval:org.secpod.oval:def:2040
The host is missing a critical security update according to Microsoft security bulletin, MS10-063. The update is required to fix code execution vulnerability. A flaw is present in the Unicode Script Processor implementation in USP10.DLL in Microsoft Windows, which is due to two array-indexing errors ...

oval:org.secpod.oval:def:1989
The host is missing a critical security update according to Microsoft security bulletin, MS10-064. The update is required to fix heap-based buffer overflow vulnerability. A flaw is present in the Outlook in Microsoft Windows, which fails to check specially crafted e-mail message. Successful exploita ...

oval:org.secpod.oval:def:1726
The host is missing a critical security update according to Microsoft security bulletin, MS10-061. The update is required to fix code execution vulnerability. A flaw is present in the Print Spooler service in Microsoft Windows, which fails to validate spooler access permissions when printer sharing ...

oval:org.secpod.oval:def:1385
The host is missing a critical security update according to Microsoft security bulletin, MS10-078. The update is required to fix privilege escalation vulnerabilities. Multiple flaws are present in the OpenType Font (OTF) format driver in Microsoft Windows, which is due to improper loading of formatt ...

oval:org.secpod.oval:def:2049
The host is missing a critical security update according to Microsoft security bulletin, MS10-079. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Windows Word, which fails to validate Word document. Successful exploitation could allow an attack ...

oval:org.secpod.oval:def:1267
The host is missing a critical security update according to Microsoft security bulletin, MS10-101. The update is required to fix denial of service vulnerability. A flaw is present in the Netlogon RPC Service, which fails to handle crafted RPC packet. Successful exploitation could allow an attacker t ...

oval:org.secpod.oval:def:1380
The host is missing a critical security update according to Microsoft security bulletin, MS10-082. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Windows Media Player (WMP), which fails to deallocate objects during a browser reload action. Succe ...

oval:org.secpod.oval:def:1456
The host is missing a critical security update according to Microsoft security bulletin, MS10-081. The update is required to fix heap-based buffer overflow vulnerability. A flaw is present in the common control library (Comctl32.dll) in Microsoft Windows, which fails to handle messages passed from a ...

oval:org.secpod.oval:def:1272
The host is missing a critical security update according to Microsoft security bulletin, MS10-096. The update is required to fix remote code execution vulnerability. A flaw is present in the wab.exe in Windows Address Book, which fails to load dynamic-link libraries. Successful exploitation could al ...

oval:org.secpod.oval:def:1269
The host is missing a critical security update according to Microsoft security bulletin, MS10-097. The update is required to fix remote code execution vulnerability. A flaw is present in the Internet Connection Signup Wizard (isignup.exe), which fails to handle the loading of DLL files. Successful e ...

oval:org.secpod.oval:def:1560
The host is missing a critical security update according to Microsoft security bulletin, MS10-080. The update is required to fix remote code execution vulnerabilities. Multiple flaws are present in the Microsoft Excel, which fails to validate Excel document with crafted record information. Successfu ...

oval:org.secpod.oval:def:1559
The host is missing a critical security update according to Microsoft security bulletin, MS10-072. The update is required to fix information disclosure vulnerabilities. Multiple flaws are present in the SafeHTML, which fails to validate malicious HTML code. Successful exploitation could allow an att ...

oval:org.secpod.oval:def:2047
The host is missing a critical security update according to Microsoft security bulletin, MS10-070. The update is required to fix information disclosure vulnerability. A flaw is present in ASP.NET (.Net Framework) encryption implementation in IIS, which fails to evaluate generated error codes during ...

oval:org.secpod.oval:def:1270
The host is missing a critical security update according to Microsoft security bulletin, MS10-098. The update is required to fix multiple vulnerabilities. Flaws are present in the Win32k.sys in the kernel-mode drivers, which fails to allocate memory when copying data from user mode. Successful explo ...

oval:org.secpod.oval:def:1217
The host is missing a Critical security update according to Microsoft security bulletin, MS10-105. The update is required to fix denial of service vulnerability. Multiple flaws are caused due to errors in processing CGM, PICT, TIFF, FlashPix image files. Successful exploitation could allows an attac ...

oval:org.secpod.oval:def:1351
The host is missing a critical security update according to Microsoft security bulletin, MS10-091. The update is required to fix multiple vulnerabilities. Multiple flaws are present in the OpenType Font (OTF) driver, which fails to parse specially crafted OpenType fonts. Successful exploitation coul ...

oval:org.secpod.oval:def:820
The host is missing a Critical security update according to Microsoft security bulletin, MS11-028. The update is required to fix a remote code execution vulnerability in Microsoft .NET Framework. A flaw is present in the JIT compiler, which fails to compile certain function calls. Successful ex ...

oval:org.secpod.oval:def:1561
The host is missing a critical security update according to Microsoft security bulletin, MS10-090. The update is required to fix multiple vulnerabilities. Multiple flaws are present in the Internet Explorer, which fails to handle objects in memory and script. Successful exploitation could allow an a ...

oval:org.secpod.oval:def:1046
The host is missing an critical security update according to Microsoft security bulletin, MS11-006. The update is required to fix stack-based buffer overflow vulnerability. A flaw is present in the "CreateSizedDIBSECTION()" function within the "shimgvw.dll" module, which fails to properly parse a ma ...

oval:org.secpod.oval:def:1354
The host is missing a critical security update according to Microsoft security bulletin, MS10-094. The update is required to fix code execution vulnerability. A flaw is present in the Microsoft Windows Media Encoder, which fails to load dynamic-link libraries such as wmerrorDAN.dll, wininetDAN.dll. ...

oval:org.secpod.oval:def:1356
The host is missing a critical security update according to Microsoft security bulletin, MS10-104. The update is required to fix remote code execution vulnerability. A flaw is present in the Document Conversions Launcher Service in Microsoft Office SharePoint Server, which fails to handle crafted SO ...

oval:org.secpod.oval:def:1246
The host is missing a critical security update according to Microsoft security bulletin, MS10-099. The update is required to fix buffer overflow vulnerability. A flaw is present in the Routing and Remote Access NDProxy component in the kernel, which fails to validate input passed from user mode to t ...

oval:org.secpod.oval:def:991
The host is missing an important security update according to Microsoft security bulletin, MS11-024. The update is required to fix multiple remote code execution vulnerabilities. Flaws are present in the application, whci fails to handle malicious Fax Cover Page (.cov) files. Successful exploitation ...

oval:org.secpod.oval:def:1036
The host is missing an Important security update according to Microsoft security bulletin, MS11-011. The update is required to fix elevation of privilege vulnerability in Windows 7 or Windows Server 2003 or Windows Server 2008 or Windows Vista or Windows XP. A flaw is present in the Microsoft Window ...

oval:org.secpod.oval:def:1035
The host is missing an Important security update according to Microsoft security bulletin, MS11-010. The update is required to fix elevation of privilege vulnerability in Windows Client/Server Run-time Subsystem (CSRSS) in Windows XP and Windows Server 2003. A flaw is present in CSRSS, which fails t ...

oval:org.secpod.oval:def:1048
The host is missing a critical security update according to Microsoft security bulletin, MS11-002. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in MDAC and WDAC which fails to properly validate string length and memory allocation. Successf ...

oval:org.secpod.oval:def:990
The host is missing an Important security update according to Microsoft security bulletin, MS11-017. The update is required to fix remote code execution vulnerability in Microsoft Windows Remote Desktop Client. A flaw is present in the application which fails to handle the loading of DLL files. Succ ...

oval:org.secpod.oval:def:980
The host is missing an Important security update according to Microsoft security bulletin, MS11-033. The update is required to fix remote code execution vulnerability in Windows XP and Windows Server 2003. A flaw is present in microsoft Wordpad which does not properly parse specially crafted Word do ...

oval:org.secpod.oval:def:1032
The host is missing a Critical security update according to Microsoft security bulletin, MS11-007. The update is required to fix remote code execution vulnerability in Windows OpenType Compact Font Format (CFF) driver. A flaw is present in the the driver which fails to properly parse specially craft ...

oval:org.secpod.oval:def:1045
The host is missing an important security update according to Microsoft security bulletin, MS11-005. The update is required to fix a denial of service vulnerability in Windows Active Directory server. A flaw is present in Microsoft Windows Active Directory, which fails to properly handle service pri ...

oval:org.secpod.oval:def:992
The host is missing a Critical security update according to Microsoft security bulletin, MS11-032. The update is required to fix remote code execution vulnerability in Windows 7 or Windows Server 2003 or Windows Server 2008 or Windows Vista or Windows XP. A flaw is present in the OpenType Font (OTF) ...

oval:org.secpod.oval:def:995
The host is missing a critical security update according to Microsoft security bulletin, MS11-029. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in GDI+ which does not properly handle integer calculations. Successful exploitation allows att ...

oval:org.secpod.oval:def:998
The host is missing an Important security update according to Microsoft security bulletin, MS11-014. The update is required to fix privilege escalation vulnerability in Windows Local Security Authority Subsystem Service (LSASS). A flaw is present in LSASS, which fails to process some specially craft ...

oval:org.secpod.oval:def:1038
The host is missing an Important security update according to Microsoft security bulletin, MS11-013. The update is required to fix elevation of privilege vulnerability in Windows 7 or Windows Server 2003 or Windows Server 2008 R2 x64 or Windows XP. The flaws are present in the implementation of Kerb ...

oval:org.secpod.oval:def:1037
The host is missing an Important security update according to Microsoft security bulletin, MS11-012. The update is required to fix elevation of privilege vulnerability in Microsoft Windows. A flaw is present in the windows kernel-mode drivers which fails to validate data passed from user mode to ker ...

oval:org.secpod.oval:def:1033
The host is missing an Important security update according to Microsoft security bulletin, MS11-008. The update is required to fix remote code execution vulnerability in Microsoft Visio. The flaws are present in the application, which fails to validate objects in memory and fail to parse certain str ...

oval:org.secpod.oval:def:996
The host is missing an Important security update according to Microsoft security bulletin, MS11-026. The update is required to fix information disclosure vulnerability. A flaw is present in MHTML implementation which fails to properly handle MIME format in a request for content blocks in a document. ...

oval:org.secpod.oval:def:821
The host is missing a Critical security update according to Microsoft security bulletin, MS11-018. The update is required to fix multiple remote code execution vulnerabilities in Microsoft Internet Explorer. The flaws are present in the browser, which fails to implement appropriate memory protection ...

oval:org.secpod.oval:def:3300
The host is missing a critical security update according to Microsoft security bulletin, MS11-023. The update is required to fix remote code execution vulnerability. A flaw is present in the application which does not properly handle loading of DLL files. Successful exploitation allows attackers to ...

oval:org.secpod.oval:def:2271
The host is missing an Important security update according to Microsoft security bulletin, MS11-074. The update is required to fix cross-site-scripting and information disclosure vulnerabilities. A flaw is present in the applications, which fails to properly validate inputs. Successful exploitation ...

oval:org.secpod.oval:def:1172
The host is missing an critical security update according to Microsoft security bulletin, MS11-039. The update is required to fix remote code execution vulnerability in Microsoft .Net framework and Microsoft Silverlight. A flaw is present in the applications which is caused when the .NET Framework a ...

oval:org.secpod.oval:def:1170
The host is missing a Critical security update according to Microsoft security bulletin, MS11-038. The update is required to fix remote code execution vulnerability. A flaw is present in the application which fails to handle specially crafted request. Successful exploitation allows remote attackers ...

oval:org.secpod.oval:def:1041
The host is missing a Critical security update according to Microsoft security bulletin, MS11-020. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in the SMB Transaction parsing, which fails to handle specially created SMB packets. Successful ...

oval:org.secpod.oval:def:1040
The host is missing a Critical security update according to Microsoft security bulletin, MS11-019. The update is required to fix remote code execution vulnerability in Microsoft Windows. The flaws are present in the SMB Client Could which fails to handle specially crafted SMB response to a client-in ...

oval:org.secpod.oval:def:1042
The host is missing an Important security update according to Microsoft security bulletin, MS11-022. The update is required to fix remote code execution vulnerability in Microsoft Powerpoint 2002, 2003, 2007 or 2010 or powerpoint viewer 2007 or 2010 or Office Compatibility Pack for Word, Excel, and ...

oval:org.secpod.oval:def:994
The host is missing a critical security update according to Microsoft security bulletin, MS11-029. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in DNS client service which does not properly handle specially crafted LLMNR queries. Successfu ...

oval:org.secpod.oval:def:993
The host is missing an critical security update according to Microsoft security bulletin, MS11-033. The update is required to fix remote code execution vulnerability in Javascript and Vbscript scripting engines. A flaw is present in the application which is caused when the scripting engines attempt ...

oval:org.secpod.oval:def:1524
The host is missing a Critical security update according to Microsoft security bulletin, MS11-046.. The update is required to fix a privilege escalation vulnerability. The flaw is present in the application, as it fails to validate input passed from the user mode to the kernel. Successful exploiatio ...

oval:org.secpod.oval:def:923
The host is missing an critical security update according to Microsoft security bulletin, MS11-035. The update is required to fix remote code execution vulnerability in Microsoft Windows server 2003, 2008 and 2008R2. A flaw is present in the application which is caused by a logic error in the Window ...

oval:org.secpod.oval:def:2536
The host is missing a important security update according to Microsoft security bulletin, MS11-075. The update is required to fix a remote code execution vulnerability. A flaw is present in the Microsoft Active Accessibility component, which fails to handle specially crafted dynamic link library fil ...

oval:org.secpod.oval:def:1198
The host is missing a Critical security update according to Microsoft security bulletin MS11-050. The update is required to fix multilple vulnerabilities. The flaws are present in the browser, which fails to access an object that has not been properly initialized or has been deleted. Successful expl ...

oval:org.secpod.oval:def:2547
The host is missing a critical security update according to Microsoft security bulletin, MS11-078. The update is required to fix a remote code execution vulnerability. Flaws are present in the Microsoft .NET Framework and Microsoft Silverlight, which fails to handle specially crafted web pages by a ...

oval:org.secpod.oval:def:1183
The host is missing a Critical security update according to Microsoft security bulletin, MS11-044. The update is required to fix remote code execution vulnerability in Microsoft .NET Framework on Windows 7 or Windows Server 2003 or Windows Server 2008 or Windows Vista or Windows XP. The flaw is pres ...

oval:org.secpod.oval:def:1181
The host is missing a Critical security update according to Microsoft security bulletin, MS11-043. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Server Message Block which does not properly handle specially crafted SMB responses. Successful exploit ...

oval:org.secpod.oval:def:1266
The host is missing a Critical security update according to Microsoft security bulletin, MS11-051. The update is required to fix a privilege escalation vulnerability. A flaw is present in Active Directory Certificate Services Web Enrollment that could allow an attacker to inject a client-side script ...

oval:org.secpod.oval:def:926
The host is missing an Important security update according to Microsoft security bulletin, MS11-036. The update is required to fix multiple remote code execution vulnerabilities in Microsoft PowerPoint or Office Compatibility Pack. The flaws are present in these applications, which fail to handle pr ...

oval:org.secpod.oval:def:1206
The host is missing a Critical security update according to Microsoft security bulletin, MS11-052. The update is required to fix remote code execution vulnerability. A flaw is present in the way that Microsoft Internet Explorer 6/7/8 accesses an object that has not been correctly initialized or has ...

oval:org.secpod.oval:def:1184
The host is installed with Microsoft Office Excel 2002 or 2003 or 2007 or 2010 or Excel Viewer or Microsoft Office Compatibility Pack for Word, Excel, and PowerPoint 2007 File Formats and is prone to remote code execution vulnerability. A flaw is present in the application when Microsoft Excel does ...

oval:org.secpod.oval:def:1414
The host is missing an important security update according to Microsoft security bulletin, MS11-056. The update is required to fix elevation of privilege vulnerability in Windows Client/Server Run-time Subsystem. A flaw is present in Client/Server Run-time Subsystem (CSRSS) that is caused by an inte ...

oval:org.secpod.oval:def:1179
The host is installed with Windows XP or Windows Vista or Windows Server 2008 or Windows Server 2003 or Windows 7 and is prone to denial of service vulnerability. A flaw is present in distributed file system (DFS) client which fails to specially crafted DFS referral responses. Successful exploitatio ...

oval:org.secpod.oval:def:1355
The host is missing a Critical security update according to Microsoft security bulletin, MS11-041. The update is required to fix remote code execution vulnerability in Microsoft Windows x64. A flaw is present in the windows Kernel-mode drivers which does not properly parse specially crafted OpenType ...

oval:org.secpod.oval:def:1408
The host is missing an Important security update according to Microsoft security bulletin, MS11-054. The update is required to fix elevation of privilege vulnerability in Windows 7 or Windows Server 2003 or Windows Server 2008 or Windows Vista or Windows XP. A flaw is present in windows Kernel-mode ...

oval:org.secpod.oval:def:2723
The host is missing a Critical security update according to Microsoft security bulletin, MS11-037. The update is required to fix an information disclosure vulnerability. A flaw is present in the application, as it fails to handle the way that MHTML interprets MIME-formatted requests for content that ...

oval:org.secpod.oval:def:1757
The host is missing a important security update according to Microsoft security bulletin, MS11-065. The update is required to fix a denial of service vulnerability. A flaw is present in remote desktop protocol service, the way it handles sequence of specially crafted RDP packets. Successful exploita ...

oval:org.secpod.oval:def:1753
The host is installed with Microsoft Visio 2010 or Microsoft Visio 2003 or Microsoft Visio 2007 and is prone to remote code execution vulnerability. A flaw is present in the application, which fails to parse certain structures when handling specially crafted Visio files. Successful exploitation will ...

oval:org.secpod.oval:def:1730
The host is missing a Critical security update according to Microsoft security bulletin, MS11-058. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, as it fails to handle a specially crafted NAPTR query string in memory. Successful exploitatio ...

oval:org.secpod.oval:def:1735
The host is missing an important security update according to microsoft bulletin MS11-066. The update is required to fix an information disclosure vulnerability. A flaw is present in the application, which fails to handle special characters within a specially crafted URI. Successful exploitation cou ...

oval:org.secpod.oval:def:1728
The host is missing an important security update according to Microsoft security bulletin, MS11-062. The update is required to fix an elevation of privilege escalation vulnerability. A flaw is present in the application, as it fails to validate input passed from the user mode to the kernel. Successf ...

oval:org.secpod.oval:def:2245
The host is missing a important security update according to Microsoft security bulletin, MS11-070. The update is required to fix privilege elevation vulnerability. The flaw is present in the Windows Internet Name Service, which fails to handle a specially crafted WINS replication packet. Successful ...

oval:org.secpod.oval:def:2249
The host is missing an important security update according to Microsoft security bulletin, MS11-073. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to properly handle different a specially crafted office file. Succe ...

oval:org.secpod.oval:def:3424
The host is missing an important security update according to Microsoft security bulletin, MS11-089. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle specially crafted word files. Successful exploitation could allow atta ...

oval:org.secpod.oval:def:2260
The host is missing an important security update according to Microsoft security bulletin, MS11-072. The update is required to fix multiple remote code execution vulnerabilities. Multiple flaws are present in the applications, which fail to properly handle different crafted excel files. Successful e ...

oval:org.secpod.oval:def:2252
The host is missing an important security update according to Microsoft security bulletin, MS11-071. The update is required to fix a remote code execution vulnerability.Flaws are present in the Windows components, which fails to handle legitimate rich test format files, text files and .doc files pre ...

oval:org.secpod.oval:def:2543
The host is missing an important security update according to MS11-082. The update is required to fix multiple DOS vulnerabilities. The flaws are present in the applications, which fails to handle crafted network packets. Successful exploitation could allow attackers to crash the service.

oval:org.secpod.oval:def:2525
The host is missing an important security update according to Microsoft security bulletin, MS11-080. The update is required to fix privilege elevation vulnerability. A flaw is present in the Microsoft Windows Ancillary Function Driver (AFD), which fails to handle a specially crafted application. Suc ...

oval:org.secpod.oval:def:2535
The host is missing a critical security update according to MS11-081. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted webpage. Successful exploitation could allow attackers to gain same us ...

oval:org.secpod.oval:def:2717
The host is missing an important security update according to Microsoft security bulletin, MS11-086. The update is required to fix elevation of privilege vulnerability. A flaw is present in the application, which is caused when Active Directory is configured to use LDAPS and fails to validate the re ...

oval:org.secpod.oval:def:3428
The host is missing an important security update according to Microsoft security bulletin, MS11-098. The update is required to fix a privilege escalation vulnerability. A flaw is present in the applications, which fail to properly handle the way the kernel accesses an object that has not been correc ...

oval:org.secpod.oval:def:2520
The host is missing an important security update according to Microsoft security bulletin, MS11-077. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Windows, which fails to handle a specially crafted font file (such as a .fon file) in a network ...

oval:org.secpod.oval:def:1762
The host is missing a Critical security update according to Microsoft security bulletin MS11-057. The update is required to fix multilple vulnerabilities. The flaws are present in the browser, which fails to access an object that has not been properly initialized or has been deleted. Successful expl ...

oval:org.secpod.oval:def:3719
The host is missing an important security update according to Microsoft bulletin MS12-006. The update is required to fix information disclosure vulnerability. A flaw is present in the application, which is caused by a design flaw in the SSL and TLS protocols when Cipher-block chaining (CBC) mode of ...

oval:org.secpod.oval:def:3434
The host is missing a critical security update according to Microsoft security bulletin, MS11-090. The update is required to fix remote code execution vulnerability. A flaw is present in Internet Explorer, which fails to handle a specially crafted web page. Successful exploitation could allow an at ...

oval:org.secpod.oval:def:3432
The host is missing an important security update according to Microsoft security bulletin, MS11-099. The update is required to fix information disclosure and remote code execution vulnerabilities. The flaws are present in the applications, which fail to properly handle XSS Filter and loading of libr ...

oval:org.secpod.oval:def:3436
The host is missing an important security update according to Microsoft bulletin, MS11-095.The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle a crafted application when run by an authenticated attacker. Successful exploita ...

oval:org.secpod.oval:def:3422
The host is missing a critical security update according to Microsoft security bulletin, MS11-087. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted TrueType font file. Successful exploitation could al ...

oval:org.secpod.oval:def:3420
The host is missing an important security update according to Microsoft security bulletin, MS11-093. The update is required to fix remote code execution vulnerability. A flaw is present in the Object Linking and Embedding (OLE), which fails to properly handle OLE objects in memory. Successful exploi ...

oval:org.secpod.oval:def:3414
The host is missing an important security update according to Microsoft security bulletin, MS11-091. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploita ...

oval:org.secpod.oval:def:3426
The host is missing an important security update according to Microsoft security bulletin, MS11-097. The update is required to fix elevation of privilege vulnerability. A flaw is present in the Client/Server Run-time Subsystem (CSRSS), which fails to properly validate permissions when a lower-integr ...

oval:org.secpod.oval:def:3633
The host is missing a critical security update according to Microsoft security bulletin, MS11-100. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the applications, which fail to properly handle the Forms Authentication feature in ASP.NET subsy ...

oval:org.secpod.oval:def:3409
The host is missing an important security update according to Microsoft security bulletin, MS11-094. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle crafted powerpoint files and loading of librarie ...

oval:org.secpod.oval:def:4132
The host is missing a critical security update according to Microsoft security bulletin, MS12-008. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, where the Windows kernel-mode driver fails to properly manage specific keyboard ...

oval:org.secpod.oval:def:3712
The host is installed is missing an important security update according to Microsoft security bulletin, ms12-003. The update is required to fix a privilege escalation vulnerability. A flaw is present in the application, which fails to handle the way that the CSRSS processes a sequence of specially c ...

oval:org.secpod.oval:def:3715
The host is missing a critical security update according to Microsoft bulletin MS12-004. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted media files. Successful exploitation allows attackers to run ar ...

oval:org.secpod.oval:def:3708
The host is missing an important security update according to Microsoft security bulletin, MS12-001. The update is required to fix a security bypass vulnerability. A flaw is present in the application, which fails to properly load structured exception handling tables. Successful exploitation could ...

oval:org.secpod.oval:def:4730
The host is missing an important security update according to Microsoft security bulletin, MS12-017. The update is required to fix a denial of service vulnerability. A flaw is present in the Microsoft Windows DNS Server, which fails to handle a specially crafted DNS query to the target DNS server. S ...

oval:org.secpod.oval:def:4736
The host is missing a critical security update according to MS12-020. The update is required to fix remote code execution and denial of service vulnerabilities. The flaws are present in the application, which fails to properly process malicious contents. Successful exploitation allows remote attacke ...

oval:org.secpod.oval:def:4136
The host is missing a critical security update according to Microsoft bulletin, MS12-010. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted web page. Successful exploitation could allow attackers to execute arb ...

oval:org.secpod.oval:def:4156
The host is missing a critical security update according to Microsoft security bulletin, MS12-016. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft .NET Framework and Microsoft Silverlight, which fails to handle a specially crafted web page usin ...

oval:org.secpod.oval:def:3710
The host is missing an important security update according to Microsoft security bulletin, MS12-002. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Object Packager which fails to handle a specially crafted executable file. Successful exploitation coul ...

oval:org.secpod.oval:def:3716
The host is missing an important security update according to Microsoft security bulletin, MS12-005. The update is required to fix remote code execution vulnerability. A flaw is present in the in Microsoft Windows, which fails to handle a specially crafted Microsoft Office file containing a maliciou ...

oval:org.secpod.oval:def:4743
The host is missing a important security update according to Microsoft security bulletin, MS12-022. The update is required to fix remote code execution vulnerability. A flaw is present in the application which fails to handle the DLL files. Successful exploitation could allow attackers to take compl ...

oval:org.secpod.oval:def:4748
The host is missing an important security update according to MS12-021. The update is required to fix elevation of privilege vulnerability. A flaw is present in the applications, which is caused due to the insecure loading of add-ins from within Visual Studio. Successful exploitation allows remote a ...

oval:org.secpod.oval:def:4135
The host is missing an important security update according to Microsoft bulletin, MS12-009. The update is required to fix multiple privilege escalation vulnerabilities. The flaws are present in the application, which fails to properly validate user-mode input passed to kernel mode. Successful exploi ...

oval:org.secpod.oval:def:4144
The host is missing an important security update according to Microsoft security bulletin, MS12-011. The update is required to fix elevation of privilege or information disclosure vulnerabilities. The flaws are present due to improper handling of URL containing malicious JavaScript elements. Success ...

oval:org.secpod.oval:def:5104
The host is missing a critical security update according to Microsoft security bulletin, MS12-027. The update is required to fix a remote code execution vulnerability. A flaw is present in Windows common controls, which fails to handle a website containing specially crafted content. Successful explo ...

oval:org.secpod.oval:def:5103
The host is missing a critical security update according to Microsoft bulletin, MS12-024. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to properly validate the digest of a signed portable executable (PE) file. Successful explo ...

oval:org.secpod.oval:def:4732
The host is missing an important security update according to Microsoft security bulletin, MS12-018. The update is required to fix a privilege escalation vulnerability. A flaw is present in the microsoft windows kernel-mode drivers, which fails to handle a specially crafted application. Successful e ...

oval:org.secpod.oval:def:5586
The host is missing a critical security update according to Microsoft security bulletin, MS12-035. The update is required to fix a remote code execution vulnerability. The flaws are present in .NET Framework, which fail to handle a specially crafted webpage. Successful exploitation could allow remot ...

oval:org.secpod.oval:def:5130
The host is missing an important security update according to Microsoft security bulletin, MS12-025. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to properly validate parameters when passing data to a function. Successful expl ...

oval:org.secpod.oval:def:5100
The host is missing an important security update according to Microsoft security bulletin, MS12-028. The update is required to fix a remote code execution vulnerability. A flaw is present in the applications, which fail to properly validate the .wps file format when parsing a specially crafted file. ...

oval:org.secpod.oval:def:6027
The host is missing a critical security update according to MS12-036. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which fails to handle specially crafted RDP packets. Successful exploitation allows remote attackers to take complete control ...

oval:org.secpod.oval:def:6345
The host is missing an important security update according to Microsoft security bulletin, MS12-048. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Shell, which fails to handle a file or directory with a specially crafted name. Successful exploita ...

oval:org.secpod.oval:def:5097
The host is missing a critical security update according to Microsoft security bulletin, MS12-023. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly handle malicious data. Successful exploitation could allo ...

oval:org.secpod.oval:def:6052
The host is missing a critical security update according to Microsoft security bulletin, MS12-037. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails sanitize malicious input. Successful exploitation could allow attackers to execute arbitrar ...

oval:org.secpod.oval:def:7922
The host is missing a critical security update according to Microsoft Security Bulletin, MS12-072. The update is required to fix integer overflow and underflow vulnerabilities. The flaws are present in the application, which fails to properly handle a specially crafted briefcase. Successful exploita ...

oval:org.secpod.oval:def:8181
The host is missing an important security update according to Microsoft bulletin, MS12-082. The update is required to fix remote code execution vulnerability. A flaw is present in Windows DirectPlay, which fails to properly handle specially crafted office documents. Successful exploitation allows at ...

oval:org.secpod.oval:def:6721
The host is missing a critical security update according to MS12-060. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which is caused when an ActiveX control corrupts the system state. Successful exploitation allows attackers to execute arbitr ...

oval:org.secpod.oval:def:6378
The host is missing an important security update according to Microsoft bulletin, MS12-050. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle crafted URLs. Successful exploitation results in elevation of privilege or information d ...

oval:org.secpod.oval:def:6352
The host is missing an important security update according to Microsoft security bulletin, MS12-046. The update is required to fix a remote code execution vulnerability. A flaw is present in the applications, which fail to properly handle the loading of DLL files. Successful exploitation could allow ...

oval:org.secpod.oval:def:6029
The host is missing an important security update according to Microsoft bulletin, MS12-041. The update is required to fix elevation of privilege vulnerabilities. The flaws are present in the application, which fails to properly validate input passed from user mode. Successful exploitation allows att ...

oval:org.secpod.oval:def:6354
The host is missing an important security update according to Microsoft bulletin, MS12-049. The update is required to fix information disclosure vulnerability. A flaw is present in the application, which is caused by a design flaw in the TLS protocol when Cipher-block chaining (CBC) mode of operatio ...

oval:org.secpod.oval:def:6344
The host is missing an important security update according to Microsoft security bulletin, MS12-047. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which fails to properly validate parameters when creating a hook procedure. Su ...

oval:org.secpod.oval:def:6350
The host is missing a critical security update according to Microsoft security bulletin, MS12-045. The update is required to fix a remote code execution vulnerability. A flaw is present in the applications, which fail to handle a crafted XML data that triggers access to an uninitialized object in me ...

oval:org.secpod.oval:def:6682
The host is missing an important security update according to Microsoft security bulletin, MS12-059. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Visio, which fails to handle a specially crafted Visio file. Successful exploitation could allow ...

oval:org.secpod.oval:def:6199
The host is missing a critical security update according to Microsoft security bulletin, MS12-043. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to handle a specially crafted webpage. Successful exploitation could allow attackers ...

oval:org.secpod.oval:def:6678
The host is missing an important security update according to Microsoft security bulletin, MS12-057. The update is required to fix remote code execution vulnerability. A flaw is present in the in Microsoft Office, which fails to handle a specially crafted Computer Graphics Metafile (CGM) graphics fi ...

oval:org.secpod.oval:def:7315
The host is missing a critical security update according to Microsoft security bulletin, MS12-064. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle crafted files. Successful exploitation could allow attacker ...

oval:org.secpod.oval:def:7312
The host is missing an important security update according to Microsoft security bulletin, MS12-068. The update is required to fix integer overflow vulnerability. A flaw is present in the application, which is caused when the Windows kernel improperly handles objects in memory. Successful exploitati ...

oval:org.secpod.oval:def:7319
The host is missing an important security update according to Microsoft security bulletin, MS12-066. The update is required to fix elevation of privilege vulnerability. A flaw is present in the applications, which fail to properly validate the HTML strings. Successful exploitation allows attackers t ...

oval:org.secpod.oval:def:6686
The host is missing an important security update according to Microsoft security bulletin, MS12-055. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which fails to handle objects in memory properly. Successful exploitation coul ...

oval:org.secpod.oval:def:6707
The host is missing a critical security update according to Microsoft security bulletin, MS12-056. The update is required to fix remote code execution vulnerability in Javascript and Vbscript scripting engines. A flaw is present in the application which is caused when the scripting engines attempt t ...

oval:org.secpod.oval:def:6712
The host is missing a critical security update, according to Microsoft security bulletin MS12-052. The update is required to fix multiple vulnerabilities. A flaw is present in the application, which fails to handle deleted objects in memory. Successful exploitation could allow attackers to execute a ...

oval:org.secpod.oval:def:7914
The host is missing an important security update according to Microsoft Security Bulletin, MS12-076. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to properly handle memory when opening specially crafted Excel files. Successful exploita ...

oval:org.secpod.oval:def:8189
The host is missing a critical security update according to Microsoft bulletin, MS12-079. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to properly parse specially crafted RTF-formatted data. Successful exploitation allows attack ...

oval:org.secpod.oval:def:7930
The host is missing a critical security update according to Microsoft security bulletin, MS12-075. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows kernel, which fails to handle the webpage that embeds TrueType font files. Successful exploitat ...

oval:org.secpod.oval:def:7325
The host is missing an Important security update according to Microsoft security bulletin, MS12-070. The update is required to fix privilege escalation vulnerability in SQL Server. A flaw is present in SQL Server running SQL Server Reporting Services, which fails to handle SQL Server Report Manager ...

oval:org.secpod.oval:def:6706
The host is missing a critical security update according to Microsoft security bulletin, MS12-058. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted file through Outlook Web Access in a br ...

oval:org.secpod.oval:def:7929
Th host is missing a critical security update according to Microsoft Security Bulletin, MS12-074. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle certain vectors and properly perform validations. Successful exploitation allows a ...

oval:org.secpod.oval:def:8183
The host is missing a critical security update according to Microsoft security bulletin, MS12-081. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to parse filenames. Successful exploitation could allow attackers to execute arbit ...

oval:org.secpod.oval:def:8321
The host is missing a critical security update according to Microsoft Security Bulletin, MS13-008. The update is required to fix remote code execution vulnerability. A flaw is present in the application, which fails to properly handle object in memory. Successful exploitation could allow attackers t ...

oval:org.secpod.oval:def:8184
The host is missing a critical security update according to Microsoft security bulletin, MS12-080. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Exchange Server, which fails to properly handle the WebReady Document Viewing and Outlook Web ...

oval:org.secpod.oval:def:8190
The host is missing a critical security update according to Microsoft security bulletin, MS12-078. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows kernel, which fails to handle the objects in memory. Successful exploitation could allow remote ...

oval:org.secpod.oval:def:8197
The host is missing a critical security update according to Microsoft security bulletin MS12-077. The update is required to fix multiple use-after-free vulnerabilities. The flaws are present in the application, which fails to handle a deleted object. Successful exploitation could allow attackers to ...

oval:org.secpod.oval:def:8341
The host is missing an important security update according to Microsoft security bulletin, MS13-004. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle the vectors related to memory. Successful exploitation allows remote a ...

oval:org.secpod.oval:def:8332
The host is missing an important security update according to Microsoft bulletin MS13-003. The update is required to fix multiple cross site scripting vulnerabilities. The flaws are present in the applications, which fail to handle a specially crafted script code. Successful exploitation could allow ...

oval:org.secpod.oval:def:8344
The host is missing an important security update according Microsoft bulletin MS13-007. The update is required to fix a denial of service vulnerability. A flaw is present in the applications, which fail to handle crafted HTTP requests. Successful exploitation could allow attackers to crash the servi ...

oval:org.secpod.oval:def:8352
The host is missing a critical security update according to MS13-002. The update is required to fix multiple MSXML vulnerabilities. The flaws are present in the applications, which fail to properly handle XML content. Successful exploitation allows attackers to execute arbitrary code.

oval:org.secpod.oval:def:9721
The host is missing a critical security update according to Microsoft security bulletin, MS13-022. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Silverlight, which fail to handle a specially crafted Silverlight application. Successful exploitat ...

oval:org.secpod.oval:def:9280
The host is missing an important security update according to Microsoft bulletin, MS13-015. The update is required to fix privilege escalation vulnerability. A flaw is present in the application, which fails to properly handle a web browser that can run XAML Browser Applications. Successful exploita ...

oval:org.secpod.oval:def:9282
The host is missing a critical security update according to Microsoft security bulletin, MS13-010. The update is required to fix remote code execution vulnerability. A flaw is present in the microsoft implementation of Vector Markup Language, which fails to handle a specially crafted webpage. Succes ...

oval:org.secpod.oval:def:9736
The host is missing a critical security update according to Microsoft bulletin, MS13-023. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to properly handle memory when parsing specially crafted Visio files. Successful exploitation ...

oval:org.secpod.oval:def:9732
The host is missing an important security update according to Microsoft bulletin, MS13-025. The update is required to fix information disclosure vulnerability. A flaw is present in the application, which fails to properly validate a buffer size. Successful exploitation allows attackers to read arbit ...

oval:org.secpod.oval:def:9728
The host is missing a critical security update according to Microsoft bulletin, MS13-024. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to properly validate user input. Successful exploitation allows attackers to read unauthorized conte ...

oval:org.secpod.oval:def:9230
The host is missing a critical security update according to Microsoft Security bulletin, MS13-011. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle a specially crafted media file (such as an .mpg file), a Microsoft Offi ...

oval:org.secpod.oval:def:9711
The host is missing a critical security update according to Microsoft bulletin, MS13-012 and is prone to multiple use after free vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code.

oval:org.secpod.oval:def:9278
The host is missing a critical security update according to Microsoft bulletin, MS13-012. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which are caused when WebReady Document Viewer is used to preview a specially crafted file. Successful exploitat ...

oval:org.secpod.oval:def:9274
The host is missing an important security update according to Microsoft bulletin, MS13-016. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which is caused when the Windows kernel-mode driver improperly handles objects in memor ...

oval:org.secpod.oval:def:10744
The host is missing an important security update according to Microsoft bulletin, MS13-032. The update is required to fix a denial of service vulnerability. A flaw is present in an application, which fails to handle a crafted query. Successful exploitation could allow attackers to cause memory consu ...

oval:org.secpod.oval:def:9239
The host is missing an important security update according to Microsoft bulletin, MS13-017. The update is required to fix multiple elevation of privilege vulnerabilities. The flaws are present in the application, which is caused when the Windows kernel improperly handles objects in memory. Successfu ...

oval:org.secpod.oval:def:10734
The host is missing an important security update according to Microsoft security bulletin, MS13-036. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle certain vectors related to memory and crafted files. Successful exploitation al ...

oval:org.secpod.oval:def:9739
The host is missing an important security update according to MS bulletin, MS13-027 and is prone to an privilege escalation vulnerability. A flaw is present in the kernel-mode drivers, which fails to properly handle objects in memory. Successful exploitation could allow attackers to run arbitrary co ...

oval:org.secpod.oval:def:10740
The host is missing an important security update according to Microsoft security bulletin MS13-031. The update is required to fix multiple race condition vulnerabilities. The flaws are present in the application, which fails to properly handle objects in memory. Successful exploitation could allow a ...

oval:org.secpod.oval:def:10730
The host is missing an important security update according to Microsoft bulletin MS13-033. The update is required to fix a CSRSS memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted application. Successful exploitation could allow attackers to gain p ...

oval:org.secpod.oval:def:10743
The host is missing a critical security update according to Microsoft Security bulletin MS13-028. The update is required to fix multiple use-after-free vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site that triggers access to a deleted object. Succes ...

oval:org.secpod.oval:def:1049
The host is missing a critical security update according to Microsoft security bulletin, MS11-003. The update is required to fix memory corruption vulnerability in Microsoft Internet Explorer. A flaw is present in the application, which fails to properly handle memory access. Successful exploitation ...

oval:org.secpod.oval:def:822
The host is missing an Important security update according to Microsoft security bulletin, MS11-021. The update is required to fix multiple code execution vulnerabilities in Microsoft Office Software or Microsoft Office Suites and Components (Excel). The flaws are present in the application, whi ...

oval:org.secpod.oval:def:2606
The host is missing an important security update according to Microsoft security bulletin, MS08-002. The update is required to fix elevation of privilege vulnerability. A flaw is present in Microsoft Windows Local Security Authority Subsystem Service (LSASS), which fails to handle validating paramet ...

oval:org.secpod.oval:def:2614
The host is missing a critical security update according to Microsoft security bulletin, MS08-028. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Jet Database Engine (Jet) in Windows, which fails to handle parsing of data within a database. Succ ...

oval:org.secpod.oval:def:2621
The host is missing a critical security update according to Microsoft security bulletin, MS09-037. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) header. Components and controls built using ATL headers fails t ...

oval:org.secpod.oval:def:2511
The host is missing a cumulative security update according to Microsoft security bulletin, MS09-032. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls, which fails to handle a specially crafted W ...

oval:org.secpod.oval:def:2628
The host is missing a critical security update according to Microsoft bulletin, MS08-010. The update is required to fix multple remote code execution vulnerabilities. A flaw is present in the application, which fails to handle specially crafted Web page. Successful exploitation could allow attackers ...

oval:org.secpod.oval:def:2654
The host is missing an important security update according to Microsoft security bulletin, MS08-005. The update is required to fix privilege escalation vulnerability. A flaw is present in Internet Information Services (IIS), which fails to handle file change notifications in the FTPRoot, NNTPFile\Ro ...

oval:org.secpod.oval:def:2664
The host is missing a critical security update according to Microsoft bulletin, MS08-022. The update is required to fix a remote code execution vulnerability. A flaw is present in (1) VBScript (VBScript.dll) and (2) JScript (JScript.dll) scripting engines 5.1 and 5.6, as used in Microsoft Windows 20 ...

oval:org.secpod.oval:def:2644
The host is missing an important security update according to Microsoft security bulletin, MS08-050. The update is required to fix information disclosure vulnerability. A flaw is present in the Windows Messenger, which fails handle scripting of an ActiveX control . Successful exploitation could allo ...

oval:org.secpod.oval:def:2652
The host is missing a critical security update according to Microsoft security bulletin, MS08-007. The update is required to fix remote code execution vulnerability. A flaw is present in the WebDAV Mini-Redirector, which fails to handle responses and long pathnames. Successful exploitation could all ...

oval:org.secpod.oval:def:2576
The host is missing a critical security update according to Microsoft security bulletin, MS08-013. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted Microsoft Office file. Successful exploitation could ...

oval:org.secpod.oval:def:2659
The host is missing an important security update according to Microsoft security bulletin, MS08-003. The update is required to fix denial of service vulnerability. A flaw is present in implementations of Active Directory on Microsoft Windows 2000 Server and Windows Server 2003 and Active Directory ...

oval:org.secpod.oval:def:3185
The host is missing an important security update according to Microsoft security bulletin, MS08-040. The update is required to fix privilege escalation vulnerabilities. The flaws are present in Microsoft SQL Server, which fails to handle functions such as page reusage, allocating more memory for the ...

oval:org.secpod.oval:def:3186
The host is missing a critical security update according to Microsoft security bulletin, MS08-009. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Word, which fails to handle a specially crafted Word file. Successful exploitation could allow an attacke ...

oval:org.secpod.oval:def:2615
The host is missing a critical security update according to Microsoft security bulletin, MS08-015. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Outlook, which fails handle a specially crafted mailto URI. Successful exploitation could allow ...

oval:org.secpod.oval:def:2616
The host is missing a critical security update according to Microsoft security bulletin, MS08-012. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Publisher, which fails handle a specially crafted Publisher file. Successful exploitation ...

oval:org.secpod.oval:def:2637
The host is missing an important security update according to Microsoft bulletin, MS08-014. The update is required to fix a remote code execution vulnerability. A flaw is present in the way excel processes data validation records when loading Excel files into memory. Successfully exploitation could ...

oval:org.secpod.oval:def:2725
The host is missing a critical security update according to Microsoft security bulletin, MS08-016. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office, which fails to handle a malformed Office file. Successful exploitation could allow an att ...

oval:org.secpod.oval:def:2667
The host is missing a critical security update according to Microsoft security bulletin, MS08-051. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office PowerPoint and Microsoft Office PowerPoint Viewer, which fails handle a specially crafted ...

oval:org.secpod.oval:def:2645
The host is missing a critical security update according to Microsoft security bulletin, MS08-027. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Publisher, which fails handle a specially crafted Publisher file. Successful exploitation could ...

oval:org.secpod.oval:def:3092
The host is missing a critical security update according to Microsoft security bulletin, MS08-026. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Word, which fails handle a specially crafted Word file. Successful exploitation could allow an attacker ...

oval:org.secpod.oval:def:2622
The host is missing a critical security update according to Microsoft security bulletin, MS08-021. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly process a malformed header or a malformed file name param ...

oval:org.secpod.oval:def:2629
The host is missing a critical security update according to Microsoft bulletin, MS08-024. The update is required to fix a remote code execution vulnerability. A flaw is present in the application. which fails to handle a specially crafted web page. Successful exploitation could allow attackers to ex ...

oval:org.secpod.oval:def:2724
The host is missing a security update according to Microsoft security bulletin, MS09-023. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft ActiveX Controls and Yahoo! Music Jukebox product, which fails to handle a specially crafted Web page ...

oval:org.secpod.oval:def:2580
The host is missing a critical security update according to Microsoft security bulletin, MS08-018. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Project, which fails handle a specially crafted Project file. Successful exploitation could allow an at ...

oval:org.secpod.oval:def:2662
The host is missing an important security update according to Microsoft security bulletin, MS08-019. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Visio, which fails to handle a specially crafted Visio file. Successful exploitation allows an ...

oval:org.secpod.oval:def:2651
The host is missing an important security update according to Microsoft security bulletin, MS08-025. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows kernel, which fails to handle validation of inputs passed from user mode. Successful exploitation co ...

oval:org.secpod.oval:def:3404
The host is missing an important security update according to Microsoft security bulletin, MS08-029. The update is required to fix denial of service vulnerabilities. The flaws are present due to specially crafted file that could allow denial of service when received by the target computer system and ...

oval:org.secpod.oval:def:2641
The host is missing an Important security update according to Microsoft security bulletin, MS09-012. The update is required to fix elevation of privilege vulnerabilities. The flaws are present in the Microsoft Windows, which fails to address tokens requested by the Microsoft Distributed Transaction ...

oval:org.secpod.oval:def:3094
The host is missing an important security update according to Microsoft security bulletin, MS08-035. The update is required to fix denial of service vulnerability. A flaw is present in the implementations of Active Directory on Microsoft Windows , which fails to handle specially crafted LDAP request ...

oval:org.secpod.oval:def:3296
The host is missing an important security update according to Microsoft security bulletin, MS08-048. The update is required to fix information disclosure vulnerability. A flaw is present in Outlook Express and Windows Mail, which fails handle a specially crafted Web page. Successful exploitation cou ...

oval:org.secpod.oval:def:3183
The host is missing an important security update according to Microsoft security bulletin, MS08-062. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Internet Printing Service, which fails to handle memory is allocation within the Internet Printing ...

oval:org.secpod.oval:def:2993
The host is missing a critical security update according to Microsoft security bulletin, MS08-033. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft DirectX, which fails to handle a specially crafted media file. Successful exploitation could allow an ...

oval:org.secpod.oval:def:2630
The host is missing an important security update according to Microsoft bulletin, MS08-037. The update is required to fix a security bypass vulnerability. The flaws are present in the DNS client and DNS server, which fail to prevent spoofing. Successful exploitation could allow attackers to redirect ...

oval:org.secpod.oval:def:2582
The host is missing an important security update according to Microsoft security bulletin, MS08-034. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows Internet Name Service(WINS), which fails to handle validation of the data structures of network pack ...

oval:org.secpod.oval:def:2619
The host is missing a critical security update according to Microsoft security bulletin, MS08-049. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Windows Event System, which fails to handle per-user subscriptions correctly. Successful exploita ...

oval:org.secpod.oval:def:2624
The host is missing a critical security update according to Microsoft bulletin, MS08-031. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted web page. Successful exploitation could allow at ...

oval:org.secpod.oval:def:3298
The host is missing an important security update according to Microsoft security bulletin, MS08-039. The update is required to fix privilege elevation vulnerabilities. The flaws are present in Outlook Web Access (OWA) for Microsoft Exchange Server, which fails to handle OWA client's session data. Su ...

oval:org.secpod.oval:def:2992
The host is missing a critical security update according to Microsoft security bulletin, MS08-071. The update is required to fix remote code execution vulnerabilities. The flaws are present in GDI, which fails to handle a specially crafted WMF image file. Successful exploitation allows attackers to ...

oval:org.secpod.oval:def:2633
The host is missing an important security update according to Microsoft bulletin, MS08-061. The update is required to fix a Windows kerne vulnerability. A flaw is present in Windows kernel, which improperly validating input passed from user mode to the kernel during the new window creation process. ...

oval:org.secpod.oval:def:2608
The host is missing a critical security update according to Microsoft security bulletin, MS08-046. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Image Color Management (ICM) system, which fails handle a specially crafted image file. Successful ...

oval:org.secpod.oval:def:2578
The host is missing a critical security update according to Microsoft security bulletin, MS08-042. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Word, which fails handle a specially crafted Word file. Successful exploitation could allow an attacker ...

oval:org.secpod.oval:def:2623
The host is missing a critical security update according to Microsoft bulletin, MS08-045. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted web page. Successful exploitation could allow at ...

oval:org.secpod.oval:def:2665
The host is missing a critical security update according to Microsoft security bulletin, MS08-041. The update is required to fix remote code execution vulnerability. A flaw is present in the ActiveX control for the Snapshot Viewer for Microsoft Access, which fails to handle a specially crafted Web p ...

oval:org.secpod.oval:def:2632
The host is missing an important security update according to Microsoft bulletin, MS08-043. The update is required to fix a remote code execution vulnerability. The flaws are present in the Excel parses record values, index values and array index when loading Excel files into memory and when data co ...

oval:org.secpod.oval:def:3095
The host is missing an important security update according to Microsoft security bulletin, MS08-076. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in Windows Media Components, which fails to handle Service Principal Name (SPN) implementations and ...

oval:org.secpod.oval:def:3301
The host is missing a critical security update according to Microsoft security bulletin, MS08-055. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office, which fails handle a specially crafted OneNote URL. Successful exploitation could allow an atta ...

oval:org.secpod.oval:def:2650
The host is missing a critical security update according to Microsoft security bulletin, MS08-053. The update is required to fix remote code execution vulnerability. A flaw is present in Windows Media Encoder 9 Series, which fails to handle a specially crafted Web page. Successful exploitation could ...

oval:org.secpod.oval:def:3184
The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. ...

oval:org.secpod.oval:def:2613
The host is missing an important security update according to Microsoft security bulletin, MS08-066. The update is required to fix elevation of privileges vulnerability. A flaw is present in Microsoft Ancillary Function Driver. Successful exploitation could allow an attacker to take complete control ...

oval:org.secpod.oval:def:2660
The host is missing a critical security update according to Microsoft security bulletin, MS09-044. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Filters, which fails to handle a specially crafted image file. Successful exploitation cou ...

oval:org.secpod.oval:def:2631
The host is missing a critical security update according to Microsoft bulletin, MS08-058. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted web page. Successful exploitation could allow attackers to execute arbitrary cod ...

oval:org.secpod.oval:def:3093
The host is missing a critical security update according to Microsoft security bulletin, MS08-070. The update is required to fix remote code execution vulnerabilities. The flaws are present in the ActiveX controls for the Microsoft Visual Basic 6.0 Runtime Extended Files, which fails to handle speci ...

oval:org.secpod.oval:def:2583
he host is missing a critical security update according to Microsoft security bulletin, MS08-057. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application which fails to properly handle specially crafted Excel file. Successful exploitatio ...

oval:org.secpod.oval:def:2666
The host is missing a critical security update according to Microsoft security bulletin, MS08-072. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Word and Microsoft Office Outlook, which allows remote code execution if a user opens a sp ...

oval:org.secpod.oval:def:2649
The host is missing a moderate security update according to Microsoft security bulletin, MS08-056. The update is required to fix information disclosure vulnerability. A flaw is present in Microsoft Office, which fails to handle a specially crafted CDO URL. Successful exploitation could allow an atta ...

oval:org.secpod.oval:def:3091
The host is missing an important security update according to Microsoft security bulletin, MS08-077. The update is required to fix elevation of privilege vulnerability. A flaw is present in Microsoft Office SharePoint Server, which fails to handle an administrative URL on a SharePoint site. Successf ...

oval:org.secpod.oval:def:2625
The host is missing an important security update according to Microsoft bulletin, MS08-063. The update is required to fix a remote code execution vulnerability. A flaw is present in the application, which fails to handle sharing of files and folders. Successful exploitation could allow attackers to ...

oval:org.secpod.oval:def:2607
The host is missing an important security update according to Microsoft security bulletin, MS08-068. The update is required to fix remote code execution vulnerability. The flaw is present in Microsoft Server Message Block (SMB) Protocol, which allows an attacker to successfully exploit this vulnera ...

oval:org.secpod.oval:def:2658
The host is missing an important security update according to Microsoft security bulletin, MS08-064. The update is required to fix privilege escalation vulnerability. A flaw is present in Virtual Address Descriptor, which fails to handle a specially crafted application. Successful exploitation could ...

oval:org.secpod.oval:def:2361
The host is missing a critical security update according to Microsoft security bulletin, MS09-001. The update is required to fix remote code execution vulnerability in Microsoft Windows. A flaw is present in the Microsoft Server Message Block (SMB) Protocol, which fails handle specially crafted SMB ...

oval:org.secpod.oval:def:2609
The host is missing a critical security update according to Microsoft security bulletin, MS08-067. The update is required to fix remote code execution vulnerability. A flaw is present in Server service, which fails to handle a specially crafted RPC request. Successful exploitation could allow an att ...

oval:org.secpod.oval:def:3052
The host is missing a critical security update according to Microsoft security bulletin, MS08-073. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation all ...

oval:org.secpod.oval:def:2994
The host is missing a critical security update according to Microsoft security bulletin, MS08-074. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Office Excel, which fails to properly handle specially crafted Excel file. Successful exploitatio ...

oval:org.secpod.oval:def:2282
The host is missing a critical security update according to Microsoft security bulletin, MS09-010. The update is required to fix memory corruption in WordPad and Office Text Converter. Multiple flaws are present due to which applications fail to process specially crafted Word 6 file, Word 97 documen ...

oval:org.secpod.oval:def:2626
The host is missing a critical security update according to bulletin, MS08-078. The update is required to fix multiple remote code execution vulnerabilities. The flaw are present in the application, which fails to handle a specially crafted Web page. Successful exploitation could allow remote code e ...

oval:org.secpod.oval:def:2618
The host is missing a important security update according to Microsoft security bulletin, MS09-004. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft SQL Server, which fails to validate input parameters passed to an extended stored procedure. Succe ...

oval:org.secpod.oval:def:2360
The host is missing a critical security update according to Microsoft security bulletin, MS09-002. The update is required to fix remote code execution vulnerability in Microsoft Windows Internet Explorer. A flaw is present in the Windows Internet Explorer, which fails to handle Cascading Style Sheet ...

oval:org.secpod.oval:def:2610
The host is missing a security update according to Microsoft security bulletin, MS09-011. The update is required to fix heap memory error. The flaw is present in MJPEG file or video stream with a malformed Huffman table, which triggers an exception that frees heap memory. Successful exploitation cou ...

oval:org.secpod.oval:def:2612
The host is missing a security update according to Microsoft security bulletin, MS09-007. The update is required to fix Secure Channel (aka SChannel) authentication component in Microsoft Windows platforms. When certificate authentication is used and does not properly validate the client's key excha ...

oval:org.secpod.oval:def:2557
The host is missing a critical security update according to Microsoft security bulletin, MS09-006. The update is required to fix remote code execution vulnerabilities. A flaw is present in the Windows kernel, which fails to handle specially crafted EMF or WMF image file. Successful exploitation coul ...

oval:org.secpod.oval:def:3299
The host is missing a critical security update according to Microsoft security bulletin, MS09-003. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Exchange Server , which fails to handle a specially crafted TNEF message. Successful exploita ...

oval:org.secpod.oval:def:2352
The host is missing an important security update according to Microsoft security bulletin, MS09-005. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Visio, which fails to handle a specially crafted Visio file. Successful exploitation ...

oval:org.secpod.oval:def:2640
The host is missing a critical security update according to Microsoft security bulletin, MS09-061. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft .NET Common Language Runtime (CLR), which fails to handle interfaces and verify the rules of ...

oval:org.secpod.oval:def:2287
The host is missing a critical security update according to Microsoft security bulletin, MS09-074. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Project, which fails to handle memory allocation for Project files. Successful exploitation ...

oval:org.secpod.oval:def:1383
The host is missing a critical security update according to Microsoft security bulletin, MS10-041. The update is required to fix data tampering vulnerability. A flaw is present in the Microsoft .NET Framework, which allows data tampering of signed XML content without being detected. Successful explo ...

oval:org.secpod.oval:def:2293
The host is missing a critical security update according to Microsoft security bulletin, MS09-009. The update is required to fix remote code execution vulnerabilities in Microsoft Office Excel. The flaws are present in the Microsoft Office Excel, which fails handle a specially crafted Excel file. Su ...

oval:org.secpod.oval:def:2372
The host is missing a moderate security update according to Microsoft security bulletin, MS09-023. The update is required to fix information disclosure vulnerability. A flaw is present in Windows Search, which fails to handle a specially crafted file from the search results. Successful exploitation ...

oval:org.secpod.oval:def:2373
The host is missing an important security update according to Microsoft security bulletin, MS09-016. The update is required to fix denial of service vulnerabilities. The flaws are present in the Microsoft Internet Security and Acceleration (ISA) Server and Microsoft Forefront Threat Management Gatew ...

oval:org.secpod.oval:def:2620
The host is missing impotant security update according to Microsoft security bulletin, MS09-008. The update is required to fix DNS and WINS server spoofing vulnerability. DNS Resolver Cache Service (aka DNSCache) when dynamic updates are enabled, does not reuse cached DNS responses and WINS server d ...

oval:org.secpod.oval:def:2577
The host is missing a critical security update according to Microsoft security bulletin, MS09-029. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows component, the Embedded OpenType (EOT) Font Engine, which fails to parse data records ...

oval:org.secpod.oval:def:2558
The host is missing a critical security update according to Microsoft security bulletin, MS09-013. The update is required to fix remote code execution vulnerability in Windows HTTP Services. A flaw is present in the Windows HTTP Services(WinHTTP), which fails handle http service file winhttp.dll. Su ...

oval:org.secpod.oval:def:2635
The host is missing a critical security update according to Microsoft security bulletin, MS09-051. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Media Runtime, which fails to process ASF files and initialize functions in compressed audio fi ...

oval:org.secpod.oval:def:2559
The host is missing a critical security update according to Microsoft security bulletin, MS09-027. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Word, which fails to handle a specially crafted Word file. Successful exploitation all ...

oval:org.secpod.oval:def:2356
The host is missing an important security update according to Microsoft security bulletin, MS09-030. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Office Publisher, which fails to handle a specially crafted Publisher file. Successful exploitati ...

oval:org.secpod.oval:def:2299
The host is missing a critical security update according to Microsoft security bulletin, MS09-060. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office, which validates the ATL ...

oval:org.secpod.oval:def:2355
The host is missing a important security update according to Microsoft security bulletin, MS09-020. The update is required to fix privilege elevation vulnerabilities. The flaws are present in the Microsoft Internet Information Services, which fails to handle a specially crafted HTTP request. Success ...

oval:org.secpod.oval:def:2359
The host is missing a important security update according to Microsoft security bulletin, MS09-025. The update is required to fix elevation escalation vulnerabilities in windows. A flaw is present in the Windows kernel , which fails to handle specific kernel object. Successful exploitation could all ...

oval:org.secpod.oval:def:2244
The host is missing a critical security update according to Microsoft security bulletin, MS09-065. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows kernel, which fails to validate the argument passed to the system call and input passed from us ...

oval:org.secpod.oval:def:2369
The host is missing a critical security update according to Microsoft security bulletin, MS09-021. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Excel, which fails to handle a specially crafted Excel file that includes a malformed ...

oval:org.secpod.oval:def:2374
The host is missing a critical security update according to Microsoft security bulletin, MS09-043. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office Web Components, which fails to handle a specially crafted Web page. Successful exploit ...

oval:org.secpod.oval:def:2998
The host is missing an important security update according to Microsoft security bulletin, MS09-031. The update is required to fix privilege escalation vulnerability. A flaw is present in the Microsoft ISA Server 2006, which fails to handle an administrative user account for an ISA server that is co ...

oval:org.secpod.oval:def:2611
The host is missing critical security update according to Microsoft security bulletin, MS09-018. The update is required to fix remote code execution vulnerability. A flaw is present in LDAP service in Active Directory, which does not properly free memory and allow memory leak for LDAP and LDAPS requ ...

oval:org.secpod.oval:def:2357
The host is missing a critical security update according to Microsoft security bulletin, MS09-024. The update is required to fix remote code execution vulnerability in Microsoft Works Converters. A flaw is present in the Microsoft Works Converters, which fails handle a specially crafted Works file. ...

oval:org.secpod.oval:def:2289
The host is missing a critical security update according to Microsoft security bulletin, MS09-028. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft DirectShow , which fails to handle a specially crafted QuickTime media file. Successful explo ...

oval:org.secpod.oval:def:2297
The host is missing a critical security update according to Microsoft security bulletin, MS09-038. The update is required to fix remote code execution vulnerabilities in Windows Media File Processing. The flaws are present in the Windows Media file processing, which fails to handle a specially craft ...

oval:org.secpod.oval:def:2639
The host is missing an important security update according to Microsoft security bulletin, MS09-033. The update is required to fix privilege escalation vulnerability. A flaw is present in the Microsoft Virtual PC and Microsoft Virtual Server, which fails to validate privilege levels when executing s ...

oval:org.secpod.oval:def:2560
The host is missing a important security update according to Microsoft security bulletin, MS09-041. The update is required to fix privilege elevation vulnerability. The flaw is present in the Windows Workstation Service, which fails to handle a specially crafted RPC message. Successful exploitation ...

oval:org.secpod.oval:def:2514
The host is missing a critical security update according to Microsoft security bulletin, MS09-054. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation allows a ...

oval:org.secpod.oval:def:2295
The host is missing a important security update according to Microsoft security bulletin, MS09-040. The update is required to fix privilege elevation vulnerability. The flaw is present in the Windows Message Queuing Service, which fails to handle a specially crafted request sent to MSMQ service. Suc ...

oval:org.secpod.oval:def:2290
The host is missing a critical security update according to Microsoft security bulletin, MS09-039. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Internet Name Service (WINS), which fails to handle specially crafted WINS replication packet. ...

oval:org.secpod.oval:def:2375
The host is missing a critical security update according to Microsoft security bulletin, MS09-034. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation allows a ...

oval:org.secpod.oval:def:2561
The host is missing a critical security update according to Microsoft security bulletin, MS09-045. The update is required to fix remote code execution vulnerability. A flaw is present in JScript Scripting Engine, which fails to handle a specially crafted file or visited a specially crafted Web site ...

oval:org.secpod.oval:def:2556
The host is missing a critical security update according to Microsoft security bulletin, MS09-048. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Transmission Control Protocol/Internet Protocol (TCP/IP) processing, which fails to handle specially cr ...

oval:org.secpod.oval:def:2371
The host is missing an important security update according to Microsoft security bulletin, MS09-042. The update is required to fix remote code execution vulnerability. A flaw is present in the Windows Telnet service, which fails validate authentication replies and allows for the relay of credentials ...

oval:org.secpod.oval:def:2634
The host is missing an important security update according to Microsoft security bulletin, MS09-066. The update is required to fix denial of service vulnerability. A flaw is present in the Microsoft Active Directory directory service, Active Directory Application Mode (ADAM), and Active Directory Li ...

oval:org.secpod.oval:def:2642
The host is missing a critical security update according to Microsoft security bulletin, MS09-044. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Remote Desktop Connection, which fails to processes specific parameters returned by the RDP serve ...

oval:org.secpod.oval:def:2035
The host is missing a critical security update according to Microsoft security bulletin, MS10-012. The update is required to fix remote code execution vulnerabilities. A flaw is present in the SMB Server, which fails to validate crafted SMB requests. Successful exploitation could allow an attacker t ...

oval:org.secpod.oval:def:1374
The host is missing a critical security update according to Microsoft security bulletin, MS10-044. The update is required to fix remote code execution vulnerabilities. Flaws are present in the Microsoft Office Access ActiveX Controls, which fails to validate a specially crafted Office file. Successf ...

oval:org.secpod.oval:def:823
The host is missing an Important security update according to Microsoft security bulletin, MS11-034. The update is required to fix multiple privilege escalation vulnerabilities in Microsoft Windows. The flaws are present in Windows Kernel-mode drivers related to managing driver objects. Successful e ...

oval:org.secpod.oval:def:6691
The host is missing a critical security update according to Microsoft security bulletin, MS12-054. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle a Remote Administration Protocol (RAP) response. Successful exploitation ...

oval:org.secpod.oval:def:9297
The host is missing a critical security update according to Microsoft security bulletin, MS13-009. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary ...

oval:org.secpod.oval:def:3302
The host is missing a critical security update according to Microsoft security bulletin, MS08-008. The update is required to fix remote code execution vulnerability. A flaw is present in Object Linking and Embedding (OLE) Automation, which fails to handle a specially crafted Web page. Successful exp ...

oval:org.secpod.oval:def:2670
The host is missing a critical security update according to Microsoft security bulletin, MS08-069. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft XML Core Services, which fails to handle a specially crafted Web page. Successful exploitation co ...

oval:org.secpod.oval:def:2581
The host is missing a moderate security update according to Microsoft security bulletin, MS08-032. The update is required to fix remote code execution vulnerability. A flaw is present in the Microsoft Speech API, which fails handle a specially crafted Web page using Internet Explorer and has the Spe ...

oval:org.secpod.oval:def:2627
The host is missing a critical security update according to, MS08-001. The update is required to fix multple remote code execution vulnerabilities. A flaw is present in the application, which fails in Transmission Control Protocol/Internet Protocol (TCP/IP) processing. Successful exploitation could ...

oval:org.secpod.oval:def:2579
The host is missing an important security update according to Microsoft security bulletin, MS08-011. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Works File Converter, which fails handle a specially crafted Works (.wps) file. Successful expl ...

oval:org.secpod.oval:def:3295
The host is missing a critical security update according to Microsoft security bulletin, MS08-017. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Office Web Components, which fails to handle a specially crafted Web page. Successful exploitation coul ...

oval:org.secpod.oval:def:2653
The host is missing a critical security update according to Microsoft security bulletin, MS09-019. The update is required to fix Information Disclosure Vulnerability. A flaw is present in Internet Explorer, which fails to handle a specially crafted Web page. Successful exploitation could allow an at ...

oval:org.secpod.oval:def:2288
The host is missing a critical security update according to Microsoft security bulletin, MS09-017. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Office PowerPoint, which fails handle a specially crafted PowerPoint file. Successful exploit ...

oval:org.secpod.oval:def:2370
The host is missing a critical security update according to Microsoft security bulletin, MS09-014. The update is required to fix remote code execution vulnerabilities. A flaw is present in the Windows Internet Explorer, which fails to handle specially crafted Web page. Successful exploitation could ...

oval:org.secpod.oval:def:2358
The host is missing moderate security update according to Microsoft security bulletin, MS09-015. The update is required to fix Blended Threat Vulnerability. A flaw is present in SearchPath function in Windows locates, which allows by convincing a user to download a specially crafted file to a specif ...

oval:org.secpod.oval:def:2294
The host is missing a critical security update according to Microsoft security bulletin, MS09-022. The update is required to fix remote code execution vulnerability in Windows. A flaw is present in the Windows Print Spooler, which fails handle specially crafted RPC request. Successful exploitation c ...

oval:org.secpod.oval:def:1388
The host is missing a critical security update according to Microsoft security bulletin, MS10-074. The update is required to fix stack-based buffer overflow vulnerability. A flaw is present in the 'UpdateFrameTitleForDocument' method in the CFrameWnd class in 'mfc42.dll' in the Microsoft Foundation ...

oval:org.secpod.oval:def:6997
The host is missing a critical security update according to Microsoft security bulletin, MS12-063. The update is required to fix multiple use after free vulnerabilities. The flaws are present in the application, which fails to handle a crafted web site. Successful exploitation could allow attackers ...

oval:org.secpod.oval:def:1248
The host is missing a critical security update according to Microsoft security bulletin, MS10-103. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Publisher, which fails to handle crafted Publisher file that uses an old file format. Successful exploi ...

oval:org.secpod.oval:def:3339
The host is missing a critical security update according to Microsoft security bulletin, MS08-052. The update is required to fix remote code execution vulnerabilities. The flaws are present in Microsoft Windows GDI+, which fails handle a specially crafted image file or browsed a Web site that contai ...

oval:org.secpod.oval:def:2617
The host is missing a moderate security update according to Microsoft security bulletin, MS09-035. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Active Template Library (ATL) included with Visual Studio, which allows an attacker to force ...

oval:org.secpod.oval:def:1747
The host is missing a important security update according to Microsoft security bulletin, MS11-067. The update is required to fix a information disclosure vulnerability. A flaw is present in Microsoft Report Viewer, which is exploited by persuading a user to access a specially crafted web page. Succ ...

oval:org.secpod.oval:def:997
The host is missing an Important security update according to Microsoft security bulletin, MS11-025. The update is required to fix remote code execution vulnerability in Microsoft Visual Studio 2005 or 2008 or 2010 or Visual Studio .NET 2003 or Visual C++ 2005 or Visual C++ 2008 or Visual C++ 2010 R ...

oval:org.secpod.oval:def:1363
The host is missing an Important security update according to Microsoft security bulletin, MS11-049. The update is required to fix information disclosure vulnerability in Microsoft InfoPath 2007 or Microsoft InfoPath 2010 or SQL Server 2005 or SQL Server 2008 or SQL Server 2008 R2 or Microsoft Visua ...

oval:org.secpod.oval:def:2663
The host is missing a critical security update according to Microsoft security bulletin, MS09-062. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Microsoft Windows GDI+, which fails to validate data within GDI+ when rendering WMF images and improper ...

oval:org.secpod.oval:def:2584
The host is missing an important security update according to Microsoft security bulletin, MS08-020. The update is required to fix spoofing attack vulnerability. A flaw is present in Windows DNS clients, which fails handle a specially crafted responses to DNS requests. Successful exploitation could ...

oval:org.secpod.oval:def:5580
The host is missing an important security update according to Microsoft security bulletin, MS12-031. The update is required to fix a remote code execution vulnerability. A flaw is present in the application which fails to handle a specially crafted Visio file. Successful exploitation could allow att ...

oval:org.secpod.oval:def:6054
The host is missing an important security update according to MS12-039. The update is required to fix remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted TrueType fonts. Successful exploitation allows remote attackers to execute ar ...

oval:org.secpod.oval:def:5593
The host is missing a critical security update according to Microsoft security bulletin, MS12-029. The update is required to fix remote code execution vulnerability. A flaw is present in the applications, which fail to handle crafted RTF data. Successful exploitation could allow attackers to execute ...

oval:org.secpod.oval:def:5619
The host is missing an important security update according to Microsoft bulletin, MS12-030. The update is required to fix multiple vulnerabilities. The flaws are present in the applications, which fail to handle a crafted spreadsheet. Successful exploitation could allow remote attackers to execute a ...

oval:org.secpod.oval:def:5624
The host is missing an important security update according to Microsoft security bulletin, MS12-034. The update is required to fix multiple vulnerabilities. The flaws are present in the Microsoft Office, Windows, .NET Framework, and Silverlight, which fail to handle a specially crafted document or a ...

oval:org.secpod.oval:def:2353
The host is missing a important security update according to Microsoft security bulletin, MS09-026. The update is required to fix privilege escalation vulnerability. A flaw is present in the Windows RPC. The RPC Marshalling Engine fails to update its internal state appropriately. Successful exploita ...

oval:org.secpod.oval:def:2657
The host is missing an important security update according to Microsoft security bulletin, MS08-036. The update is required to fix denial of service vulnerability. A flaw is present in the Pragmatic General Multicast (PGM) protocol, which fails to handle PGM packets. Successful exploitation could al ...

oval:org.secpod.oval:def:6098
The host is missing an important security update according to Microsoft security bulletin, MS12-042. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle a specially crafted application. Successful exploitation could allow attackers ...

CPE    1
cpe:/o:microsoft:windows_2003_server
*XCCDF
xccdf_scaprepo.com_benchmark_microsoft-windows-server-2003

© 2013 SecPod Technologies