Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310809760
HistoryDec 14, 2016 - 12:00 a.m.

Microsoft .NET Framework Information Disclosure Vulnerability (3205640)

2016-12-1400:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
22

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.6 High

AI Score

Confidence

High

0.039 Low

EPSS

Percentile

92.0%

JSON

This host is missing an important security
update according to Microsoft Bulletin MS16-155.

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.809760");
  script_version("2023-07-21T05:05:22+0000");
  script_cve_id("CVE-2016-7270");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_tag(name:"last_modification", value:"2023-07-21 05:05:22 +0000 (Fri, 21 Jul 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2018-10-12 22:14:00 +0000 (Fri, 12 Oct 2018)");
  script_tag(name:"creation_date", value:"2016-12-14 15:04:05 +0530 (Wed, 14 Dec 2016)");
  script_name("Microsoft .NET Framework Information Disclosure Vulnerability (3205640)");
  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft Bulletin MS16-155.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Flaw exists as .NET Framework improperly uses
  a developer-supplied key. When this key is misused, it is also possible for
  access to data to be temporarily lost.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote
  attackers to gain access to potentially sensitive information.");

  script_tag(name:"affected", value:"Microsoft .NET Framework 4.6.2.");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"executable_version");

  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3204805");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/94741");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3204801");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3204802");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3206632");
  script_xref(name:"URL", value:"https://technet.microsoft.com/library/security/ms16-155");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_mandatory_keys("SMB/WindowsVersion");
  script_require_ports(139, 445);

  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(hotfix_check_sp(win7:2, win7x64:2, win2008r2:2, win8_1:1, win8_1x64:1,
                   win2012:1, win2012R2:1, win10:1, win10x64:1, win2016:1) <= 0){
  exit(0);
}

sysPath = smb_get_system32root();
if(!sysPath){
  exit(0);
}

key = "SOFTWARE\Microsoft\ASP.NET\";
if(!registry_key_exists(key:key)){
  exit(0);
}

## NET Framework 4.6.2
key = "SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Client\";
if(registry_key_exists(key:key))
{
  pathv46 = registry_get_sz(key:key, item:"InstallPath");
  if(pathv46)
  {
    dllv46 = fetch_file_version(sysPath:pathv46, file_name:"system.data.dll");
    if(dllv46)
    {
      ## .NET Framework 4.6.2
      ##win8.1x86 updates system.data.dll file
      if(hotfix_check_sp(win7:2, win7x64:2, win2008r2:2, win2012:1, win8_1x64:1, win2012R2:1, win8_1:1) > 0)
      {
        if(version_in_range(version:dllv46, test_version:"4.6", test_version2:"4.6.1635"))
        {
          report = 'File checked:     ' + pathv46 + "system.data.dll" + '\n' +
                   'File version:     ' + dllv46  + '\n' +
                   'Vulnerable range: ' + "4.6 - 4.6.1635" + '\n' ;
          security_message(data:report);
          exit(0);
        }
      }
    }
  }
}

if(hotfix_check_sp(win10:1, win10x64:1, win2016:1) > 0)
{
  edgeVer = fetch_file_version(sysPath:sysPath, file_name:"edgehtml.dll");
  if(!edgeVer){
    exit(0);
  }
  if(edgeVer && version_in_range(version:edgeVer, test_version:"11.0.14393.0", test_version2:"11.0.14393.575"))
  {
    report = 'File checked:     ' + sysPath + "\edgehtml.dll" + '\n' +
             'File version:     ' + edgeVer  + '\n' +
             'Vulnerable range: 11.0.14393.0 - 11.0.14393.575' + '\n' ;
    security_message(data:report);
    exit(0);

  }
}

Related

nessus 1
nvd 1
mskb 5
cvelist 1
symantec 1
kaspersky 1
mscve 1
prion 1
cve 1
nessus
nessus
MS16-155: Security Update for .NET Framework (3205640)
2016-12-13 00:00:00
nvd
nvd
CVE-2016-7270
2016-12-20 06:59:00
mskb
mskb
MS16-155: Description of the Security Only Update for the .NET Framework 4.6.2 for Windows 7 and Windows Server 2008 R2: December 13, 2016
2016-12-13 08:00:00
MS16-155: Security update for the .NET Framework: December 13, 2016
2016-12-13 00:00:00
MS16-155: Description of the Security Only Update for the .NET Framework 4.6.2 for Windows 8.1 and Windows Server 2012 R2: December 13, 2016
2016-12-13 08:00:00
cvelist
cvelist
CVE-2016-7270
2016-12-20 05:54:00
symantec
symantec
Microsoft .NET Framework CVE-2016-7270 Information Disclosure Vulnerability
2016-12-13 00:00:00
kaspersky
kaspersky
KLA10925 Information Disclosure vulnerability in Microsoft .NET Framework 4.6.2
2016-12-13 00:00:00
mscve
mscve
.NET Framework Information Disclosure Vulnerability
2016-12-13 08:00:00
prion
prion
Information disclosure
2016-12-20 06:59:00
cve
cve
CVE-2016-7270
2016-12-20 06:59:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.6 High

AI Score

Confidence

High

0.039 Low

EPSS

Percentile

92.0%

JSON
Related for OPENVAS:1361412562310809760
nessus1nvd1mskb5cvelist1symantec1kaspersky1mscve1prion1cve1