Windows Live Essentials WLW URI Protocol Information Disclosure Vulnerability (CVE-2013-0096)
Gravedad: Medio
Fecha recomendada: 21 de julio de 2015
Descripción
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Handling Vulnerability."
Revelación de la información
Per: http://technet.microsoft.com/en-us/security/bulletin/ms13-045
'There is no update available for Windows Essentials 2011. See update FAQ for details.'
Soluciones
Trend Micro Deep Security DPI Rule Number: 1005454