Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2022 Tenable Network Security, Inc.MACOSX_MS15-049.NASL
HistoryMay 12, 2015 - 12:00 a.m.

Microsoft Silverlight < 5.1.40416.00 Multiple Vulnerabilities (MS15-044 / MS15-049) (Mac OS X)

2015-05-1200:00:00
This script is Copyright (C) 2015-2022 Tenable Network Security, Inc.
www.tenable.com
16
JSON

The version of Microsoft Silverlight installed on the remote host is affected by multiple vulnerabilities :

  • An information disclosure vulnerability exists due to improper handling of OpenType fonts by the Windows DirectWrite library. A remote attacker can exploit this vulnerability by convincing a user to open a file or visit a website containing a specially crafted OpenType font, resulting in the disclosure of sensitive information. (MS15-044 / CVE-2015-1670)

  • A remote code execution vulnerability exists due to improper handling of TrueType font files by the Windows DirectWrite library. A remote attacker can exploit this vulnerability by convincing a user to open a specially crafted document or visit a website containing a specially crafted TrueType font file, resulting in execution of arbitrary code in the context of the current user. (MS15-044 / CVE-2015-1671)

  • A flaw exists in Microsoft Silverlight that allows a remote attacker, via a specially crafted Silverlight application, to execute arbitrary code with the same or higher level of permissions as the currently logged on user. (MS15-049 / CVE-2015-1715)

#
# (C) Tenable Network Security, Inc.
#

include('compat.inc');

if (description)
{
  script_id(83353);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/25");

  script_cve_id("CVE-2015-1670", "CVE-2015-1671", "CVE-2015-1715");
  script_bugtraq_id(74485, 74490, 74503);
  script_xref(name:"MSFT", value:"MS15-049");
  script_xref(name:"MSFT", value:"MS15-044");
  script_xref(name:"MSKB", value:"3056819");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/15");

  script_name(english:"Microsoft Silverlight < 5.1.40416.00 Multiple Vulnerabilities (MS15-044 / MS15-049) (Mac OS X)");

  script_set_attribute(attribute:"synopsis", value:
"A multimedia application framework installed on the remote Mac OS X
host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Microsoft Silverlight installed on the remote host is
affected by multiple vulnerabilities :

  - An information disclosure vulnerability exists due to
    improper handling of OpenType fonts by the Windows
    DirectWrite library. A remote attacker can exploit this
    vulnerability by convincing a user to open a file or
    visit a website containing a specially crafted OpenType
    font, resulting in the disclosure of sensitive
    information. (MS15-044 / CVE-2015-1670)

  - A remote code execution vulnerability exists due to
    improper handling of TrueType font files by the Windows
    DirectWrite library. A remote attacker can exploit this
    vulnerability by convincing a user to open a specially
    crafted document or visit a website containing a
    specially crafted TrueType font file, resulting in
    execution of arbitrary code in the context of the
    current user. (MS15-044 / CVE-2015-1671)

  - A flaw exists in Microsoft Silverlight that allows a
    remote attacker, via a specially crafted Silverlight
    application, to execute arbitrary code with the same or
    higher level of permissions as the currently logged on
    user. (MS15-049 / CVE-2015-1715)");
  script_set_attribute(attribute:"see_also", value:"http://technet.microsoft.com/en-us/security/bulletin/ms15-049");
  script_set_attribute(attribute:"see_also", value:"http://technet.microsoft.com/en-us/security/bulletin/ms15-044");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released a set of patches for Silverlight 5.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-1715");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/05/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2015/05/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/12");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:silverlight");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2015-2022 Tenable Network Security, Inc.");

  script_dependencies("macosx_silverlight_installed.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MacOSX/Version", "MacOSX/Silverlight/Installed");

  exit(0);
}

include("global_settings.inc");
include("misc_func.inc");

kb_base = "MacOSX/Silverlight";
get_kb_item_or_exit(kb_base+"/Installed");
path = get_kb_item_or_exit(kb_base+"/Path", exit_code:1);
version = get_kb_item_or_exit(kb_base+"/Version", exit_code:1);


bulletin = "MS15-049";
kb = "3056819";

fixed_version = "5.1.40416.00";
if (version =~ "^5\." && ver_compare(ver:version, fix:fixed_version, strict:FALSE) < 0)
{
  if (defined_func("report_xml_tag")) report_xml_tag(tag:bulletin, value:kb);

  if (report_verbosity > 0)
  {
    report =
      '\n  Path              : ' + path +
      '\n  Installed version : ' + version +
      '\n  Fixed version     : ' +fixed_version +
      '\n';
    security_hole(port:0, extra:report);
  }
  else security_hole(0);
  exit(0);
}
else exit(0, "The Microsoft Silverlight "+version+" install is not reported to be affected.");
VendorProductVersionCPE
microsoftsilverlightcpe:/a:microsoft:silverlight

Related

mskb 2
nessus 2
kaspersky 2
openvas 8
symantec 3
cve 3
prion 3
attackerkb 1
cisa_kev 1
checkpoint_advisories 2
googleprojectzero 2
securityvulns 1
mskb
mskb
MS15-044: Vulnerabilities in Microsoft font drivers could allow remote code execution: May 12, 2015
2020-05-21 04:38:22
MS15-049: Vulnerability in Silverlight could allow elevation of privilege: May 12, 2015
2020-05-21 04:14:24
nessus
nessus
MS15-044: Vulnerabilities in Microsoft Font Drivers Could Allow Remote Code Execution (3057110)
2015-05-13 00:00:00
MS15-049: Vulnerability in Silverlight Could Allow Elevation of Privilege (3058985)
2015-05-12 00:00:00
kaspersky
kaspersky
KLA10578 Multiple vulnerabilities in Microsoft Font Drivers
2015-05-12 00:00:00
KLA10581 Privilege escalation vulnerability in Microsoft Silverlight
2015-05-12 00:00:00
openvas
openvas
Microsoft Windows Font Drivers Remote Code Execution Vulnerability (3057110)
2015-05-13 00:00:00
Microsoft .NET Framework Remote Code Execution Vulnerability (3057110)
2015-05-14 00:00:00
Microsoft Silverlight Elevation of Privilege Vulnerability (3058985)
2015-05-13 00:00:00
symantec
symantec
Microsoft Silverlight CVE-2015-1715 Privilege Escalation Vulnerability
2015-05-12 00:00:00
Microsoft Windows GDI+ CVE-2015-1671 TrueType Font Handling Remote Code Execution Vulnerability
2015-05-12 00:00:00
Microsoft Windows GDI+ CVE-2015-1670 OpenType Font Parsing Information Disclosure Vulnerability
2015-05-12 00:00:00
cve
cve
CVE-2015-1715
2015-05-13 10:59:00
CVE-2015-1671
2015-05-13 10:59:00
CVE-2015-1670
2015-05-13 10:59:00
prion
prion
Design/Logic Flaw
2015-05-13 10:59:00
Spoofing
2015-05-13 10:59:00
Design/Logic Flaw
2015-05-13 10:59:00
attackerkb
attackerkb
CVE-2015-1671
2015-05-13 00:00:00
cisa_kev
cisa_kev
Microsoft Windows Remote Code Execution Vulnerability
2022-05-25 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows TrueType Font Parsing Remote Code Execution (MS14-058; CVE-2014-4148; CVE-2015-1671)
2014-10-15 00:00:00
Microsoft Windows ATMFD Font Driver Information Disclosure (MS15-021: CVE-2015-0089; CVE-2015-1670)
2015-03-10 00:00:00
googleprojectzero
googleprojectzero
Enabling QR codes in Internet Explorer, or a story of a cross-platform memory disclosure
2015-09-14 00:00:00
One font vulnerability to rule them all #1: Introducing the BLEND vulnerability
2015-07-31 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2015-05-13 00:00:00
JSON
Related for MACOSX_MS15-049.NASL
mskb2nessus2kaspersky2openvas8symantec3cve3prion3attackerkb1cisa_kev1checkpoint_advisories2googleprojectzero2securityvulns1