Vulnerability Manager Plus

ms11-026: vulnerability in mhtml could allow information disclosure: april 12, 2011 for Windows Server 2008 x64 Edition (KB2503658)

Risk Information

Base Score

6.1

MODERATE

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS Score

Exploitation Probability

No records found

CVE Information

Source CVE
CVE-2011-0096

Associated CVE
CVE-2011-0096

Patch Details

Patch associated with this vulnerability is supported by ManageEngine.

Patch ID
10063

Patch Description
Security Update for Windows Server 2008 x64 Edition (KB2503658)

References

http://blogs.technet.com/b/msrc/archive/2011/01/28/microsoft-releases-security-advisory-2501696.aspx
http://blogs.technet.com/b/srd/archive/2011/01/28/more-information-about-the-mhtml-script-injection-vulnerability.aspx
http://osvdb.org/70693
http://secunia.com/advisories/43093
http://www.exploit-db.com/exploits/16071
http://www.kb.cert.org/vuls/id/326549
http://www.microsoft.com/technet/security/advisory/2501696.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-026.mspx
http://www.securityfocus.com/bid/46055
http://www.securitytracker.com/id?1025003
http://www.us-cert.gov/cas/techalerts/TA11-102A.html
http://www.vupen.com/english/advisories/2011/0242
https://exchange.xforce.ibmcloud.com/vulnerabilities/65000