The host is missing an important security update according to Microsoft security bulletin, MS15-047. The update is required to fix remote code execution vulnerabilities. The flaws are present in the applications, which fail to handle specially crafted page content. Successful exploitation could allow attackers to execute arbitrary code in the security context of the W3WP service account.
The host is missing an important security update according to Microsoft security bulletin, MS15-075. The update is required to fix a multiple elevation of privilege vulnerabilities. The flaws are present in the application, which fails to properly validate user input. An attacker who successfully exploited the vulnerabilities could allow a user with limited privileges on an affected system to exec ...
The host is missing an important security update according to Microsoft security bulletin, MS15-082. The update is required to fix multiple remote code execution vulnerabilities. The flaws are present in the application, which fails to properly validate certificates during authentication. Successful exploitation could allow attackers to impersonate the client session.
The host is missing an important security update according to Microsoft security bulletin, MS16-021. The update is required to fix a denial of service vulnerability. A flaw is present in the application, which fails to handle a Remote Authentication Dial-In User Service (RADIUS) authentication request. Successful exploitation could allow attackers to send specially crafted username strings to a Ne ...
The host is missing an important security update according to Microsoft security bulletin, MS16-076. The update is required to fix a memory corruption vulnerability. A flaw is present in the DNS server, which fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user.