Download
| Alert*
|
oval:org.secpod.oval:def:3184
The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. ... oval:org.secpod.oval:def:2541 The host is installed with Microsoft Host Integration 2004 SP1, 2006 SP1, 2009 or 2010 and is prone to an endless loop dos vulnerability. A flaw is present in the applications, which fail to handle some UDP or TCP traffic. Successful exploitation could allow attackers to crash the services. oval:org.mitre.oval:def:6075 Microsoft Host Integration Server (HIS) 2000, 2004, and 2006 does not limit RPC access to administrative functions, which allows remote attackers to bypass authentication and execute arbitrary programs via a crafted SNA RPC message using opcode 1 or 6 to call the CreateProcess function, aka "HIS Com ... oval:org.secpod.oval:def:2542 The host is installed with Microsoft Host Integration Server 2004 SP1, 2006 SP1, 2009, 2010 and is prone to access of unallocated memory dos vulnerability. A flaw is present in the applications, which fail to properly handle TCP and UDP traffic. Successful exploitation could allow attackers to crash ... oval:org.mitre.oval:def:5712 A version of Microsoft Host Integration Server 2004 is installed oval:org.secpod.oval:def:6713 The host is installed with Microsoft Office 2003, Office 2003 Web Components, Microsoft Office 2007, 2010, Microsoft Host Integration Server 2004 , Microsoft Visual FoxPro 8.0, 9.0 or Visual Basic 6.0 Runtime, Microsoft SQL Server 2000, 2005, 2008, 2008 R2 and is prone to remote code execution vulne ... |
