Check: 2013-A-0004
Windows 2012 IAVM:
2013-A-0004
(in version v1 r30)
Title
Multiple Vulnerabilities in Microsoft XML Core Services (Cat I impact)
Discussion
Microsoft has released a security bulletin addressing vulnerabilities affecting Microsoft XML Core Services. Microsoft XML Core Services is a set of services that provide applications written in various scripting languages a high degree of interoperability with XML based applications. To exploit these vulnerabilities, an attacker would host a malicious website that is designed to invoke MSXML through Internet Explorer and entice a user to open it via email sent or Instant Messenger request. If successfully exploited, these vulnerabilities would allow an attacker to execute arbitrary code and compromise the affected system.
Check Content
Fix Text
Additional Identifiers
Rule ID:
Vulnerability ID: V-36444
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |