Windows Live Essentials WLW URI Protocol Information Disclosure Vulnerability (CVE-2013-0096)
Gravité: : Medium
Date du conseil: 21 juillet 2015
Description
Writer in Microsoft Windows Essentials 2011 and 2012 allows remote attackers to bypass proxy settings and overwrite arbitrary files via crafted URL parameters, aka "Windows Essentials Improper URI Handling Vulnerability."
Information Exposure Rating:
Per: http://technet.microsoft.com/en-us/security/bulletin/ms13-045
'There is no update available for Windows Essentials 2011. See update FAQ for details.'
Solutions
Trend Micro Deep Security DPI Rule Number: 1005454