Microsoft XML Core Services Remote Code Execution Vulnerability
Last Update Date:
13 Apr 2016 12:00
Release Date:
13 Apr 2016
4270
Views
RISK: Medium Risk
TYPE: Operating Systems - Windows OS
A remote code execution vulnerability exists when the Microsoft XML Core Services (MSXML) parser processes user input. An attacker who successfully exploited the vulnerability could run malicious code remotely to take control of the user’s system.
Impact
- Remote Code Execution
System / Technologies affected
- Microsoft Windows Vista
- Microsoft Windows Server 2008
- Microsoft Windows 7
- Microsoft Windows Server 2008 R2
- Microsoft Windows 8.1
- Microsoft Windows Server 2012 and Windows Server 2012 R2
- Microsoft Windows RT 8.1
- Microsoft Windows 10
Solutions
Before installation of the software, please visit the software manufacturer web-site for more details.
- Download location for patches:
https://technet.microsoft.com/en-us/library/security/MS16-040
Vulnerability Identifier
Source
Related Link
Share with