MS14-035: Cumulative Security Update for Internet Explorer (2969262)

This script is Copyright (C) 2014-2015 Tenable Network Security, Inc.


Synopsis :

The remote host has a web browser that is affected by multiple
vulnerabilities.

Description :

The remote host is missing Internet Explorer (IE) Security Update
2969262.

The version of Internet Explorer installed on the remote host is
affected by multiple vulnerabilities, the majority of which are remote
code execution vulnerabilities. An attacker could exploit these
vulnerabilities by convincing a user to visit a specially crafted web
page.

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms14-035
http://www.securityfocus.com/archive/1/532798/30/0/threaded
http://www.securityfocus.com/archive/1/532799/30/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-14-194
http://www.zerodayinitiative.com/advisories/ZDI-14-193
http://www.zerodayinitiative.com/advisories/ZDI-14-192
http://www.zerodayinitiative.com/advisories/ZDI-14-191
http://www.zerodayinitiative.com/advisories/ZDI-14-190
http://www.zerodayinitiative.com/advisories/ZDI-14-189
http://www.zerodayinitiative.com/advisories/ZDI-14-188
http://www.zerodayinitiative.com/advisories/ZDI-14-187
http://www.zerodayinitiative.com/advisories/ZDI-14-186
http://www.zerodayinitiative.com/advisories/ZDI-14-185
http://www.zerodayinitiative.com/advisories/ZDI-14-184
http://www.zerodayinitiative.com/advisories/ZDI-14-183
http://www.zerodayinitiative.com/advisories/ZDI-14-182
http://www.zerodayinitiative.com/advisories/ZDI-14-181
http://www.zerodayinitiative.com/advisories/ZDI-14-180
http://www.zerodayinitiative.com/advisories/ZDI-14-179
http://www.zerodayinitiative.com/advisories/ZDI-14-178
http://www.zerodayinitiative.com/advisories/ZDI-14-177
http://www.zerodayinitiative.com/advisories/ZDI-14-176
http://www.zerodayinitiative.com/advisories/ZDI-14-175
http://www.zerodayinitiative.com/advisories/ZDI-14-174

Solution :

Microsoft has released a set of patches for Internet Explorer 6, 7, 8,
9, 10, and 11.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true