Detections
Analytics
MS14-032: Vulnerability in Microsoft Lync Server Could Allow Information Disclosure (2969258)
medium Nessus Plugin ID 74424
Language:
Synopsis
The remote host is affected by an information disclosure vulnerability.Description
The version of Microsoft Lync Server installed on the remote host is affected by an information disclosure vulnerability that can be exploited by tricking a user into clicking a specially crafted URL.Solution
Microsoft has released a set of patches for Microsoft Lync Server 2010 and 2013.See Also
https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2014/ms14-032
Plugin Details
Severity: Medium
ID: 74424
File Name: smb_nt_ms14-032.nasl
Version: 1.7
Type: local
Agent: windows
Family: Windows : Microsoft Bulletins
Published: 6/11/2014
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.0
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Temporal Score: 3.2
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Information
CPE: cpe:/a:microsoft:lync_server
Required KB Items: SMB/MS_Bulletin_Checks/Possible
Exploit Ease: No known exploits are available
Patch Publication Date: 6/10/2014
Vulnerability Publication Date: 6/10/2014
Reference Information
CVE: CVE-2014-1823
BID: 67893