MS16-058: Security Update for Windows IIS (3141083)
High Nessus Plugin ID 91008
SynopsisThe remote Windows host is affected by a remote code execution vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by a remote code execution vulnerability due to improper validation of user-supplied input before loading certain dynamic-link libraries. An attacker can exploit this, via a specially crafted library, to inject and execute arbitrary code.
SolutionMicrosoft has released a set of patches for Windows Vista and 2008.