Blended Threat Remote Code Execution Vulnerability - MS09-015ID: oval:org.secpod.oval:def:2358 | Date: (C)2011-09-30 (M)2024-02-19 |
Class: PATCH | Family: windows |
The host is missing moderate security update according to Microsoft security bulletin, MS09-015. The update is required to fix Blended Threat Vulnerability. A flaw is present in SearchPath function in Windows locates, which allows by convincing a user to download a specially crafted file to a specific location, and then open an application that could load the file under certain circumstances. Successful exploitation could result in remote code execution.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows XP |
Microsoft Windows Server 2003 |
Microsoft Windows Vista |
Microsoft Windows Server 2008 |