Cumulative Security Update for ActiveX Killbits for Windows Server 2008 (KB2900986)
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
87.839%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
14735
Patch Description
Cumulative Security Update for ActiveX Killbits for Windows Server 2008 (KB2900986)
References
http://blogs.technet.com/b/msrc/archive/2013/11/11/activex-control-issue-being-addressed-in-update-tuesday.aspx
http://technet.microsoft.com/security/bulletin/MS13-090
http://www.darkreading.com/vulnerability/new-ie-vulnerability-found-in-the-wild-s/240163814/
http://www.fireeye.com/blog/technical/2013/11/new-ie-zero-day-found-in-watering-hole-attack.html
http://www.us-cert.gov/ncas/alerts/TA13-317A
https://isc.sans.edu/forums/diary/16985