MS15-045: Vulnerability in Windows Journal Could Allow Remote Code Execution (3046002)
High Nessus Plugin ID 83362
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe version of Windows running on the remote host is affected by a remote code execution vulnerability due to a flaw in Windows Journal.
A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted Journal file (.jnt), resulting in execution of arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Windows Vista, 2008, 7, 2008 R2, 8, 2012, 8.1, and 2012 R2