Family: Windows : Microsoft Bulletins --> Category: infos
Flaw in Microsoft VM (816093) Vulnerability Scan
Vulnerability Scan Summary
Checks for the version of the remote VM
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through the VM.
The remote host is running a Microsoft VM machine which has a bug
in its bytecode verifier which may allow a remote attacker to execute
arbitrary code on this host, with the rights of the user running the VM.
To exploit this vulnerability, a possible hacker would need to send a malformed
applet to a user on this host, and have him execute it. The malicious
applet would then be able to execute code outside the sandbox of the VM.
Microsoft has released a set of patches for the Windows VM :
Medium / CVSS Base Score : 6
Click HERE for more information and discussions on this network vulnerability scan.