Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2012 SecPodOPENVAS:903042
HistoryOct 10, 2012 - 12:00 a.m.

Microsoft FAST Search Server 2010 for SharePoint RCE Vulnerabilities (2742321)

2012-10-1000:00:00
Copyright (C) 2012 SecPod
plugins.openvas.org
34

EPSS

0.578

Percentile

97.7%

JSON

This host is missing an important security update according to
Microsoft Bulletin MS12-067.

###############################################################################
# OpenVAS Vulnerability Test
# $Id: secpod_ms12-067.nasl 6532 2017-07-05 07:42:05Z cfischer $
#
# Microsoft FAST Search Server 2010 for SharePoint RCE Vulnerabilities (2742321)
#
# Authors:
# Madhuri D <[email protected]>
#
# Copyright:
# Copyright (c) 2012 SecPod, http://www.secpod.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

tag_impact = "Successful exploitation could run arbitrary code in the context of a user
  account with a restricted token.
  Impact Level: System/Application";
tag_affected = "Microsoft FAST Search Server 2010 for SharePoint Service Pack 1";
tag_insight = "The flaws are due to the error in Oracle Outside In libraries, when
  used by the Advanced Filter Pack while parsing specially crafted files.";
tag_solution = "Run Windows Update and update the listed hotfixes or download and
  update mentioned hotfixes in the advisory from the below link,
  http://technet.microsoft.com/en-us/security/bulletin/ms12-067";
tag_summary = "This host is missing an important security update according to
  Microsoft Bulletin MS12-067.";

if(description)
{
  script_id(903042);
  script_version("$Revision: 6532 $");
  script_cve_id("CVE-2012-1766", "CVE-2012-1767", "CVE-2012-1768", "CVE-2012-1769",
                "CVE-2012-1770", "CVE-2012-1771", "CVE-2012-1772", "CVE-2012-1773",
                "CVE-2012-3106", "CVE-2012-3107", "CVE-2012-3108", "CVE-2012-3109",
                "CVE-2012-3110.");
  script_bugtraq_id(54531, 54511, 54536, 54500, 54541, 54543, 54497, 54548,
                    54546, 54504, 54550, 54554, 54506);
  script_tag(name:"cvss_base", value:"2.1");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:N/I:N/A:P");
  script_tag(name:"last_modification", value:"$Date: 2017-07-05 09:42:05 +0200 (Wed, 05 Jul 2017) $");
  script_tag(name:"creation_date", value:"2012-10-10 11:39:34 +0530 (Wed, 10 Oct 2012)");
  script_name("Microsoft FAST Search Server 2010 for SharePoint RCE Vulnerabilities (2742321)");
  script_xref(name : "URL" , value : "http://support.microsoft.com/kb/2553402");
  script_xref(name : "URL" , value : "http://technet.microsoft.com/en-us/security/bulletin/ms12-067");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 SecPod");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("gb_ms_fast_search_server_detect.nasl");
  script_mandatory_keys("MS/SharePoint/Install/Path");
  script_require_ports(139, 445);
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

## Variables Initialization
path = "";
dllPath = "";
dllVer = "";

## SharePoint Server 2010
path = get_kb_item("MS/SharePoint/Install/Path");
if(!path){
  exit(0);
}

dllPath = path + "bin";
dllVer = fetch_file_version(sysPath:dllPath,
         file_name:"microsoft.sharepoint.search.extended.administration.dll");
if(!dllVer){
  exit(0);
}

if(version_in_range(version:dllVer, test_version:"14.0.329.0", test_version2:"14.0.334.10")){
  security_message(0);
}

Related

mskb 2
securityvulns 3
nessus 5
openvas 3
cert 1
prion 13
nvd 13
cve 13
cvelist 13
checkpoint_advisories 1
exploitdb 2
ubuntucve 1
oracle 1
mskb
mskb
MS12-058: Vulnerability in Microsoft Exchange Server WebReady document viewing could allow remote code execution: August 14, 2012
2012-08-14 00:00:00
MS12-067: Vulnerability in FAST Search Server 2010 for SharePoint parsing could allow remote code execution: October 9, 2012
2012-10-09 00:00:00
securityvulns
securityvulns
Microsoft Exchange Server WebReady Document Viewing multiple security vulnerabilities
2012-08-20 00:00:00
Microsoft Fast Search Server vulnerabilities
2012-10-09 00:00:00
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-10-28 00:00:00
nessus
nessus
Symantec Enterprise Vault < 10.0.2 Multiple Vulnerabilities in Oracle Outside-In Libraries (SYM12-015)
2012-10-09 00:00:00
MS12-067: Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (2742321)
2012-10-10 00:00:00
Microsoft Security Advisory 2737111: Vulnerabilities in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution (deprecated)
2012-07-30 00:00:00
openvas
openvas
Microsoft Exchange Server WebReady Document Viewing Remote Code Execution Vulnerabilities (2740358)
2012-08-15 00:00:00
MS Exchange Server WebReady Document Viewing Remote Code Execution Vulnerabilities (2740358)
2012-08-15 00:00:00
Microsoft FAST Search Server 2010 for SharePoint RCE Vulnerabilities (2742321)
2012-10-10 00:00:00
cert
cert
Oracle Outside In contains multiple exploitable vulnerabilities
2012-07-17 00:00:00
prion
prion
Buffer overflow
2012-07-17 23:55:00
Buffer overflow
2012-07-17 23:55:00
Buffer overflow
2012-07-17 23:55:00
nvd
nvd
CVE-2012-1771
2012-07-17 23:55:02
CVE-2012-3108
2012-07-17 23:55:02
CVE-2012-1766
2012-07-17 23:55:02
cve
cve
CVE-2012-1771
2012-07-17 23:55:02
CVE-2012-3107
2012-07-17 23:55:02
CVE-2012-1769
2012-07-17 23:55:02
cvelist
cvelist
CVE-2012-1773
2012-07-17 22:39:00
CVE-2012-1770
2012-07-17 22:39:00
CVE-2012-1769
2012-07-17 22:39:00
checkpoint_advisories
checkpoint_advisories
Oracle Outside In JPEG 2000 QCD Segment Processing Heap Buffer Overflow (CVE-2012-1769)
2012-10-14 00:00:00
exploitdb
exploitdb
Oracle Outside-In - &#039;.LWP&#039; File Parsing Stack Buffer Overflow
2012-07-20 00:00:00
Oracle Outside-In JP2 - File Parsing Heap Overflow
2012-07-20 00:00:00
ubuntucve
ubuntucve
CVE-2012-1798
2012-03-29 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2012
2012-07-17 00:00:00

EPSS

0.578

Percentile

97.7%

JSON
Related for OPENVAS:903042
mskb2securityvulns3nessus5openvas3cert1prion13nvd13cve13cvelist13checkpoint_advisories1exploitdb2ubuntucve1oracle1