| VID |
28266 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
A version of Internet Explorer (IE) earlier than 8.0 is installed on the remote host. IE 8.0 by default enables Data Execution Protection (DEP), which helps mitigate attacks against it.
For this reason, Microsoft recommends that users upgrade to that version for better security.
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of this condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://blogs.technet.com/msrc/archive/2010/01/14/security-advisory-979352.aspx
* Platforms Affected:
Internet Explorer versions prior to 8.0
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version Internet Explorer 8.0 available from the Microsoft Web site at http://www.microsoft.com/windows/internet-explorer/default.aspx |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
