KLA12432
RCE vulnerability in Microsoft Products (ESU)

Updated: 01/24/2022
Detect date
?
01/21/2022
Severity
?
High
Description

Remote code execution vulnerability was found in Microsoft Products (Extended Security Update). Malicious users can exploit this vulnerability to execute arbitrary code.

Affected products

Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for 32-bit Systems Service Pack 2

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

CVE-2013-3900

Impacts
?
ACE 
[?]
Related products
Microsoft Windows
Microsoft Windows 7
Microsoft Windows Server 2008
CVE-IDS
?
CVE-2013-39007.6Critical
Find out the statistics of the vulnerabilities spreading in your region