MS15-114: Security Update for Windows Journal to Address Remote Code Execution (3100213)
High Nessus Plugin ID 86821
SynopsisThe remote host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is affected by a remote code execution vulnerability in Windows Journal due to improper parsing of Journal files. An unauthenticated, remote attacker can exploit this, via a crafted Journal file, to execute arbitrary code in the context of the current user.
SolutionMicrosoft has released a set of patches for Vista, 2008, 7, and 2008 R2.