This script is Copyright (C) 2010-2015 Tenable Network Security, Inc.
The remote Windows host is missing an update that disables selected
The Microsoft Data Analyzer ActiveX control has a remote code
execution vulnerability. The system may also have one or more
vulnerable third-party ActiveX controls installed.
A remote attacker could exploit these issues by tricking a user into
requesting a maliciously crafted web page, resulting in arbitrary code
See also :
Microsoft has released a set of patches for Windows 2000, XP, 2003,
Vista, 2008, and 7.
Risk factor :
Medium / CVSS Base Score : 5.1
CVSS Temporal Score : 4.4
Public Exploit Available : true
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 44418 ()
Bugtraq ID: 3476638045380603806638067
CVE ID: CVE-2009-2570CVE-2009-3735CVE-2010-0252
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.