Lucene search
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS21_SEP_OFFICE_SHAREPOINT_2019.NASLHistorySep 14, 2021 - 12:00 a.m.
Security Updates for Microsoft SharePoint Server 2019 (September 2021)
2021-09-1400:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
33.0%
The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by a Server Spoofing Vulnerability.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(153389);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/29");
script_cve_id("CVE-2021-38651");
script_xref(name:"MSKB", value:"5002018");
script_xref(name:"MSFT", value:"MS21-5002018");
script_xref(name:"IAVA", value:"2021-A-0424-S");
script_name(english:"Security Updates for Microsoft SharePoint Server 2019 (September 2021)");
script_set_attribute(attribute:"synopsis", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is affected by a server spoofing vulnerability.");
script_set_attribute(attribute:"description", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates.
It is, therefore, affected by a Server Spoofing Vulnerability.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002018");
script_set_attribute(attribute:"solution", value:
"Microsoft has released the following security updates to address these issues:
-KB5002018");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:S/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-38651");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/09/14");
script_set_attribute(attribute:"patch_publication_date", value:"2021/09/14");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/09/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:sharepoint_server");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows : Microsoft Bulletins");
script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("microsoft_sharepoint_installed.nbin", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
script_require_keys("SMB/MS_Bulletin_Checks/Possible");
script_require_ports(139, 445, "Host/patch_management_checks");
exit(0);
}
include('smb_func.inc');
include('smb_hotfixes.inc');
include('smb_hotfixes_fcheck.inc');
include('smb_reg_query.inc');
include('install_func.inc');
get_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');
var bulletin = 'MS21-09';
var app_name = 'Microsoft SharePoint Server';
var kbs = make_list(
'5002018'
);
if (get_kb_item('Host/patch_management_checks'))
hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_NOTE);
get_kb_item_or_exit('SMB/Registry/Enumerated', exit_code:1);
# Get path information for Windows.
var windir = hotfix_get_systemroot();
if (isnull(windir)) exit(1, 'Failed to determine the location of %windir%.');
registry_init();
var install = get_single_install(app_name:app_name);
var kb_checks =
{
'2019':
{ '0':
{'Server':
[
{
'kb' : '5002018',
'path' : install['path'],
'append' : 'bin',
'file' : 'ascalc.dll',
'version' : '16.0.10378.20002',
'product_name' : 'Microsoft SharePoint Server 2019 Core'
}
]
}
}
};
# Get the specific product / path
var param_list = kb_checks[install['Product']][install['SP']][install['Edition']];
# audit if not affected
if(isnull(param_list)) audit(AUDIT_HOST_NOT, 'affected');
var port = kb_smb_transport();
# grab the path otherwise
var check;
foreach var check (param_list)
{
if (!isnull(check['version']))
{
var path = check['path'];
if (!empty_or_null(check['append']))
var path = hotfix_append_path(path:check['path'], value:check['append']);
are_we_vuln = hotfix_check_fversion(
file:check['file'],
version:check['version'],
path:path,
kb:check['kb'],
product:check['product_name']
);
}
else
{
report = '\n';
if (check['product_name'])
report += ' Product : ' + check['product_name'] + '\n';
if (check['kb'])
report += ' KB : ' + check['kb'] + '\n';
hotfix_add_report(report, kb:check['kb']);
}
if(are_we_vuln == HCF_OLDER) vuln = TRUE;
}
if (vuln)
{
port = kb_smb_transport();
replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);
hotfix_security_note();
hotfix_check_fversion_end();
exit(0);
}
else
{
hotfix_check_fversion_end();
audit(AUDIT_INST_VER_NOT_VULN, app_name);
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | sharepoint_server | cpe:/a:microsoft:sharepoint_server |
Related
nvd
nvd
CVE-2021-38651
2021-09-15 12:15:15
cve
cve
CVE-2021-38651
2021-09-15 12:15:15
prion
prion
Spoofing
2021-09-15 12:15:00
cvelist
cvelist
CVE-2021-38651 Microsoft SharePoint Server Spoofing Vulnerability
2021-09-15 11:24:10
mskb
mskb
cnvd
cnvd
Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2022-59600)
2021-09-15 00:00:00
mscve
mscve
Microsoft SharePoint Server Spoofing Vulnerability
2021-09-14 07:00:00
nessus
nessus
Security Updates for Microsoft Sharepoint 2016 (September 2021)
2021-09-14 00:00:00
Security Updates for Microsoft SharePoint Server 2013 (September 2021)
2021-09-14 00:00:00
kaspersky
kaspersky
KLA12288 Multiple vulnerabilities in Microsoft Office
2021-09-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - September 2021
2021-09-15 03:44:31
qualysblog
qualysblog
3.5 Low
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:S/C:N/I:P/A:N
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N
5.7 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
33.0%
Related for SMB_NT_MS21_SEP_OFFICE_SHAREPOINT_2019.NASL