This script is Copyright (C) 2008-2014 Tenable Network Security, Inc.
Arbitrary code can be executed on the remote host through the
Microsoft Event System.
The remote version of Windows contains a vulnerability in the Event
System that might allow an attacker to execute arbitrary code on the
To exploit this vulnerability, an attacker with valid login
credentials would need to send a malformed subscription request to the
remote Event System.
See also :
Microsoft has released a set of patches for Windows 2000, XP, 2003,
Vista and 2008.
Risk factor :
High / CVSS Base Score : 8.5
CVSS Temporal Score : 6.7
Public Exploit Available : true