MS14-067: Vulnerability in XML Core Services Could Allow Remote Code Execution (2993958)
High Nessus Plugin ID 79128
SynopsisThe remote host is affected by a remote code execution vulnerability.
DescriptionThe remote host contains a version of Microsoft XML Core Services (MSXML) that is affected by a remote code execution vulnerability. An attacker can exploit this issue by convincing a user to visit a specially crafted website, allowing the attacker to execute code with the current user's permissions.
SolutionMicrosoft has released a set of patches for Windows 2003, Vista, 2008, 7, 2008 R2, 8, 2012, 8.1 and 2012 R2.