Lucene search
Copyright (C) 2018 Greenbone AGOPENVAS:1361412562310814619HistoryDec 12, 2018 - 12:00 a.m.
Microsoft Windows Multiple Vulnerabilities (KB4471318)
2018-12-1200:00:00
Copyright (C) 2018 Greenbone AG
plugins.openvas.org
207
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.968 High
EPSS
Percentile
99.7%
This host is missing a critical security
update according to Microsoft KB4471318
# SPDX-FileCopyrightText: 2018 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.814619");
script_version("2023-11-03T16:10:08+0000");
script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
script_cve_id("CVE-2018-8477", "CVE-2018-8514", "CVE-2018-8611", "CVE-2018-8619",
"CVE-2018-8621", "CVE-2018-8622", "CVE-2018-8625", "CVE-2018-8631",
"CVE-2018-8639", "CVE-2018-8641", "CVE-2018-8643", "CVE-2018-8595",
"CVE-2018-8596");
script_tag(name:"cvss_base", value:"7.6");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2023-11-03 16:10:08 +0000 (Fri, 03 Nov 2023)");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-08-24 17:37:00 +0000 (Mon, 24 Aug 2020)");
script_tag(name:"creation_date", value:"2018-12-12 13:11:27 +0530 (Wed, 12 Dec 2018)");
script_name("Microsoft Windows Multiple Vulnerabilities (KB4471318)");
script_tag(name:"summary", value:"This host is missing a critical security
update according to Microsoft KB4471318");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Multiple flaws are due to:
- Windows kernel improperly handles objects in memory.
- Internet Explorer VBScript execution policy does not properly
restrict VBScript under specific conditions.
- Scripting engine improperly handles objects in memory in Internet
Explorer.
- Windows kernel-mode driver fails to properly handle objects in memory.
- Internet Explorer improperly accesses objects in memory.
- Windows GDI component improperly discloses the contents of its
memory.
- Windows Domain Name System (DNS) servers when they fail to properly handle
requests.
- Windows Win32k component fails to properly handle objects in
memory.
- VBScript engine improperly handles objects in memory.
- Remote Procedure Call runtime improperly initializes objects in memory.");
script_tag(name:"impact", value:"Successful exploitation will allow attackers
to run arbitrary code, elevate privileges and obtain information to further
compromise the user's system.");
script_tag(name:"affected", value:"- Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Microsoft Windows 7 for 32-bit/x64 Systems Service Pack 1");
script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"executable_version");
script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/4471318");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2018 Greenbone AG");
script_family("Windows : Microsoft Bulletins");
script_dependencies("smb_reg_service_pack.nasl");
script_require_ports(139, 445);
script_mandatory_keys("SMB/WindowsVersion");
exit(0);
}
include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");
if(hotfix_check_sp(win2008r2:2, win7:2, win7x64:2) <= 0){
exit(0);
}
sysPath = smb_get_system32root();
if(!sysPath ){
exit(0);
}
fileVer = fetch_file_version(sysPath:sysPath, file_name:"Win32k.sys");
if(!fileVer){
exit(0);
}
if(version_is_less(version:fileVer, test_version:"6.1.7601.24313"))
{
report = report_fixed_ver(file_checked:sysPath + "\Win32k.sys",
file_version:fileVer, vulnerable_range:"Less than 6.1.7601.24313");
security_message(data:report);
exit(0);
}
exit(0);
Related
kaspersky
kaspersky
KLA11884 Multiple vulnerability in Microsoft Products (ESU)
2018-12-11 00:00:00
KLA11385 Multiple vulnerabilities in Microsoft Windows
2018-12-11 00:00:00
KLA11388 Multiple vulnerabilities in Microsoft Browsers
2018-12-11 00:00:00
mskb
mskb
December 11, 2018âKB4471330 (Monthly Rollup)
2018-12-11 08:00:00
December 11, 2018âKB4471325 (Monthly Rollup)
2018-12-11 08:00:00
December 11, 2018âKB4471318 (Monthly Rollup)
2018-12-11 08:00:00
nessus
nessus
KB4471326: Windows Server 2012 December 2018 Security Update
2018-12-11 00:00:00
openvas
openvas
Microsoft Windows Multiple Vulnerabilities (KB4471320)
2018-12-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4471323)
2018-12-12 00:00:00
Microsoft Windows Multiple Vulnerabilities (KB4471321)
2018-12-12 00:00:00
prion
prion
Information disclosure
2018-12-12 00:29:00
Information disclosure
2018-12-12 00:29:00
Information disclosure
2018-12-12 00:29:00
nvd
nvd
cve
cve
cvelist
cvelist
attackerkb
attackerkb
krebs
krebs
Patch Tuesday, December 2018 Edition
2018-12-11 21:05:41
Microsoft Patch Tuesday, January 2021 Edition
2021-01-13 01:32:20
talosblog
talosblog
symantec
symantec
mscve
mscve
Windows Remote Procedure Call Information Disclosure Vulnerability
2018-12-11 08:00:00
Windows Kernel Information Disclosure Vulnerability
2018-12-11 08:00:00
Windows GDI Information Disclosure Vulnerability
2018-12-11 08:00:00
cert
cert
cisa_kev
cisa_kev
Microsoft Windows Kernel Privilege Escalation Vulnerability
2022-05-24 00:00:00
zdi
zdi
checkpoint_advisories
checkpoint_advisories
Microsoft Internet Explorer Memory Corruption - VER0 (CVE-2018-8631)
2019-02-21 00:00:00
Microsoft Internet Explorer Memory Corruption (CVE-2018-8631)
2018-12-11 00:00:00
packetstorm
packetstorm
Microsoft Windows jscript!JsArrayFunctionHeapSort Out-Of-Bounds Write
2018-12-18 00:00:00
zdt
zdt
VBScript - VbsErase Reference Leak Use-After-Free Exploit
2018-12-22 00:00:00
VBScript - MSXML Execution Policy Bypass Exploit
2018-12-22 00:00:00
thn
thn
Microsoft Issues Patch for Windows Zero-Day Flaw Under Active Attack
2018-12-12 08:48:00
Deadglyph: New Advanced Backdoor with Distinctive Malware Tactics
2023-09-23 11:10:00
cisa
cisa
CERT/CC Reports Critical Vulnerabilities in Microsoft Windows, Server
2019-01-04 00:00:00
securelist
securelist
Magnitude exploit kit â evolution
2020-06-24 10:00:16
The fourth horseman: CVE-2019-0797 vulnerability
2019-03-13 10:00:52
Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611)
2018-12-12 08:00:24
qualysblog
qualysblog
December 2018 Patch Tuesday â 39 Vulns, Workstation Patches, Adobe Vulns
2018-12-11 19:21:42
threatpost
threatpost
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
High
0.968 High
EPSS
Percentile
99.7%
Related for OPENVAS:1361412562310814619