MS16-103: Security Update for ActiveSyncProvider (3182332)
Medium Nessus Plugin ID 92825
SynopsisThe remote host is affected by an information disclosure vulnerability.
DescriptionThe remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability in ActiveSyncProvider when Universal Outlook fails to establish a secure connection. An unauthenticated, remote attacker can exploit this to disclose the username and password of a user.
SolutionMicrosoft has released a set of patches for Windows 10.