Cumulative Security Update for ActiveX Killbits for Windows Server 2012 R2 (KB2900986)
Risk Information
Base Score
8.8
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
87.839%
CVE Information
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
14748
Patch Description
Cumulative Security Update for ActiveX Killbits for Windows Server 2012 R2 (KB2900986)
References
http://blogs.technet.com/b/msrc/archive/2013/11/11/activex-control-issue-being-addressed-in-update-tuesday.aspx
http://technet.microsoft.com/security/bulletin/MS13-090
http://www.darkreading.com/vulnerability/new-ie-vulnerability-found-in-the-wild-s/240163814/
http://www.fireeye.com/blog/technical/2013/11/new-ie-zero-day-found-in-watering-hole-attack.html
http://www.us-cert.gov/ncas/alerts/TA13-317A
https://isc.sans.edu/forums/diary/16985