{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"Windows Vista SP 2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2012","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 8.1 64 bits","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2012 R2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2008 64 bits SP2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 8.1 32 bits","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 7 32 bits SP1","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Vista 64 bits SP2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2008 32 bits SP2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 8 32 bits","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2008 Itanium SP2","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows RT 8.1","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 7 64 bits SP1","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2008 R2 64 bits SP1","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows RT","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows 8 64 bits","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Windows Server 2008 R2 Itanium SP1","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"closed_at":"2014-11-12","content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2014-6352","url":"https://www.cve.org/CVERecord?id=CVE-2014-6352"}],"links":[{"title":"Contre-mesures provisoires (Fix    It) fournies par Microsoft","url":"https://support.microsoft.com/kb/3010060"}],"reference":"CERTFR-2014-ALE-009","revisions":[{"description":"version initiale ;","revision_date":"2014-10-22T00:00:00.000000"},{"description":"fermeture de l'alerte.","revision_date":"2014-11-12T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 d\u00e9couverte dans <span class=\"textit\">Microsoft\nOLE</span>. Elle permet \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire \u00e0 distance lors de l'ouverture d'un document Office\ncontenant un objet OLE sp\u00e9cialement forg\u00e9.\n\nL'\u00e9diteur indique que cette vuln\u00e9rabilit\u00e9 semble \u00eatre utilis\u00e9e dans le\ncadre d'attaques cibl\u00e9es.\n","title":"Vuln\u00e9rabilit\u00e9 dans Microsoft OLE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft MS14-064 du 11 novembre 2014","url":"https://technet.microsoft.com/library/security/ms14-064"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Microsoft 3010060 du 21 octobre 2014","url":"https://technet.microsoft.com/library/security/3010060"}]}