MS KB2896666: Vulnerability in Microsoft Graphics Component Could Allow Remote Code Execution (deprecated)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.

Synopsis :

The remote host is affected by a remote code execution

Description :

The remote host is missing one of the workarounds referenced in KB

The remote host has a version of the Microsoft Graphics Component
installed that is potentially affected by a code execution vulnerability
due to the way the application handles specially crafted TIFF images.

See also :

Solution :

Microsoft has provided a workaround for Windows Vista, 2008, Office
2003, Office 2007, Office 2010, Office Compatibility Pack, Lync 2010 and
Lync 2013.

Risk factor :

High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 70773 ()

Bugtraq ID: 63530

CVE ID: CVE-2013-3906

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial