MS14-035: Cumulative Security Update for Internet Explorer (2969262)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote host has a web browser that is affected by multiple
vulnerabilities.

Description :

The remote host is missing Internet Explorer (IE) Security Update
2969262.

The version of Internet Explorer installed on the remote host is
affected by multiple vulnerabilities, the majority of which are remote
code execution vulnerabilities. An attacker could exploit these
vulnerabilities by convincing a user to visit a specially crafted web
page.

See also :

http://www.securityfocus.com/archive/1/532798/30/0/threaded
http://www.securityfocus.com/archive/1/532799/30/0/threaded
http://technet.microsoft.com/en-us/security/bulletin/ms14-035

Solution :

Microsoft has released a set of patches for Internet Explorer 6, 7, 8,
9, 10, and 11.

Risk factor :

High / CVSS Base Score : 9.3
(CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.1
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true