Immunity Canvas: MS14_025

ID MS14_025
Type canvas
Reporter Immunity Canvas
Modified 2014-05-14T11:13:00


Name| ms14_025
CVE| CVE-2014-1812
Exploit Pack| CANVAS
Description| ms14_025
Notes| CVE Name: CVE-2014-1812
VENDOR: Microsoft
Commandline: runmodule ms14-025
CVE Url:
Date public: 05/13/2014
Must be run through a PowerShell Node. Uses PowerSploit Function: Get-GPPPassword
created by Chris Campbell and used under BSD 3-Clause License"

Client systems are only affected if Remote Server Administration Tools has
been installed:
- Windows Vista SP2
- Windows Vista SP2 x64
- Windows 7 SP1
- Windows 7 SP1 x64
- Windows 8
- Windows 8 x64
- Windows 8.1
- Windows 8.1 x64

Server systems are only affected if Group Policy Management is configured on
the server:
- Windows Server 2008 SP2
- Windows Server 2008 SP2 x64
- Windows Server 2008 R2
- Windows Server 2012
- Windows Server 2012 R2
- Windows Server 2008