Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.LENOVO_MOUSESUITE_6_73.NASL
HistorySep 11, 2015 - 12:00 a.m.

Lenovo Mouse Suite < 6.73 Local Privilege Elevation

2015-09-1100:00:00
This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

5.1%

JSON

The version of Lenovo Mouse Suite installed on the remote Windows host is prior to 6.73. It is, therefore, affected by a privilege elevation vulnerability that can allow a local attacker to gain administrative privileges on the system.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(85908);
  script_version("1.5");
  script_cvs_date("Date: 2019/11/25");

  script_cve_id("CVE-2015-4596");

  script_name(english:"Lenovo Mouse Suite < 6.73 Local Privilege Elevation");
  script_summary(english:"Checks the file version of Lenovo Mouse Suite.");

  script_set_attribute(attribute:"synopsis", value:
"The remote Windows host contains an application that is affected by
a local privilege elevation vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Lenovo Mouse Suite installed on the remote Windows host
is prior to 6.73. It is, therefore, affected by a privilege elevation
vulnerability that can allow a local attacker to gain administrative
privileges on the system.

Note that Nessus has not tested for this issue but has instead relied
only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"https://support.lenovo.com/us/en/product_security/len_2015_066");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Lenovo Mouse Suite 6.73 or later.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-4596");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/08/19");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/08/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/09/11");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/a:lenovo:mouse_suite");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("lenovo_mousesuite_installed.nbin");
  script_require_keys("installed_sw/Lenovo Mouse Suite");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("install_func.inc");

app = "Lenovo Mouse Suite";

install = get_single_install(app_name: app, exit_if_unknown_ver: TRUE);

path = install['path'];
version = install['version'];

fix = "6.73";

# Check for fix, Versions < 6.73 are vulnerable.
if (ver_compare(ver: version, fix: fix, strict:FALSE) >= 0)
  audit(AUDIT_INST_PATH_NOT_VULN, app, version, path);

port = get_kb_item("SMB/transport");
if (!port) port = 445;

if (report_verbosity > 0)
{
  report =
    '\n  Path              : ' + path +
    '\n  Installed version : ' + version +
    '\n  Fixed version     : ' + fix +
    '\n';
  security_warning(port:port, extra:report);
}
else security_warning(port);

Related

cvelist 1
prion 1
lenovo 2
nvd 1
cve 1
cvelist
cvelist
CVE-2015-4596
2017-06-13 16:00:00
prion
prion
Code injection
2017-06-13 16:29:00
lenovo
lenovo
Lenovo Mouse Suite Escalation of Privileges - Lenovo Support US
2016-08-12 00:00:00
Lenovo Mouse Suite Escalation of Privileges
2016-08-12 00:00:00
nvd
nvd
CVE-2015-4596
2017-06-13 16:29:00
cve
cve
CVE-2015-4596
2017-06-13 16:29:00

CVSS2

4.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

0

Percentile

5.1%

JSON
Related for LENOVO_MOUSESUITE_6_73.NASL
cvelist1prion1lenovo2nvd1cve1