This script is Copyright (C) 2017 Tenable Network Security, Inc.
The remote host has a web browser installed that is affected by
The version of Microsoft Edge installed on the remote Windows host is
missing Cumulative Security Update 4013071. It is, therefore, affected
by multiple vulnerabilities, including remote code execution
vulnerabilities. An unauthenticated, remote attacker can exploit these
vulnerabilities by convincing a user to visit a specially crafted
website, resulting in the execution of arbitrary code in the context
of the current user.
Note that in order to be fully protected from CVE-2017-0071, Microsoft
recommends the July 2017 security updates to be installed.
See also :
Microsoft has released a set of patches for Windows 10 and Windows
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.3
Public Exploit Available : true
Family: Windows : Microsoft Bulletins
Nessus Plugin ID: 97730 ()
CVE ID: CVE-2017-0009
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now