MS KB2532445: AppLocker Rules Bypass

Low Nessus Plugin ID 70395


The remote host is missing an update that prevents a rules bypass vulnerability.


The remote host is missing Microsoft KB2532445, an update that prevents an attacker from bypassing AppLocker rules by using an Office macro.


Microsoft has released a set of patches for Windows 7 and 2008 R2.

See Also

Plugin Details

Severity: Low

ID: 70395

File Name: smb_kb2532445.nasl

Version: $Revision: 1.5 $

Type: local

Agent: windows

Family: Windows

Published: 2013/10/11

Modified: 2017/08/30

Dependencies: 73149, 13855

Risk Information

Risk Factor: Low


Base Score: 3.6

Temporal Score: 3

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: AppLocker/enabled, SMB/Registry/Enumerated, SMB/WindowsVersion, SMB/ProductName

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2011/11/09

Vulnerability Publication Date: 2011/11/09

Reference Information

CVE: CVE-2011-4434

BID: 50687

OSVDB: 77213

MSKB: 2532445