9 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
0.004 Low
EPSS
Percentile
69.7%
Name | ms14_025 |
---|---|
CVE | CVE-2014-1812 Exploit Pack |
VENDOR: Microsoft | |
Commandline: runmodule ms14-025 | |
References: https://technet.microsoft.com/library/security/ms14-025 | |
CVE Url: http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1812 | |
Date public: 05/13/2014 | |
NOTES: | |
Must be run through a PowerShell Node. Uses PowerSploit Function: Get-GPPPassword | |
created by Chris Campbell and used under BSD 3-Clause License" |
Client systems are only affected if Remote Server Administration Tools has
been installed:
- Windows Vista SP2
- Windows Vista SP2 x64
- Windows 7 SP1
- Windows 7 SP1 x64
- Windows 8
- Windows 8 x64
- Windows 8.1
- Windows 8.1 x64
Server systems are only affected if Group Policy Management is configured on
the server:
- Windows Server 2008 SP2
- Windows Server 2008 SP2 x64
- Windows Server 2008 R2
- Windows Server 2012
- Windows Server 2012 R2
- Windows Server 2008