Detections
Analytics
MS KB953839: Cumulative Security Update of ActiveX Kill Bits
medium Nessus Plugin ID 33881
Language:
Synopsis
The remote Windows host is missing a security update containing ActiveX kill bits.Description
The remote host is missing a list of kill bits for ActiveX controls that are known to contain vulnerabilities.If these ActiveX controls are ever installed on the remote host, either now or in the future, they would expose it to various security issues.
Solution
Microsoft has released an advisory for KB953839.See Also
https://docs.microsoft.com/en-us/security-updates/SecurityAdvisories/2008/953839
Plugin Details
Severity: Medium
ID: 33881
File Name: smb_kb_953839.nasl
Version: 1.26
Type: local
Agent: windows
Family: Windows
Published: 8/13/2008
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Medium
Base Score: 5.1
Temporal Score: 3.8
Vector: CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/o:microsoft:windows
Required KB Items: SMB/Registry/Enumerated, SMB/WindowsVersion
Exploit Ease: No known exploits are available
Reference Information
CVE: CVE-2007-5605, CVE-2007-5606
BID: 27539, 29531, 29532, 30548
MSKB: 953839