Lucene search
This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.SMB_NT_MS06-072.NASLHistoryDec 12, 2006 - 12:00 a.m.
MS06-072: Cumulative Security Update for Internet Explorer (925454)
2006-12-1200:00:00
This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.
www.tenable.com
15
The remote host is missing the IE cumulative security update 925454.
The remote version of IE is vulnerable to several flaws that could allow an attacker to execute arbitrary code on the remote host.
Note that Microsoft has re-released this hotfix as its initial version contained a buffer overflow.
#
# Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(23833);
script_version("1.38");
script_cvs_date("Date: 2018/11/15 20:50:30");
script_cve_id("CVE-2006-5579", "CVE-2006-5581", "CVE-2006-5578", "CVE-2006-5577");
script_bugtraq_id(21552, 21507, 21546, 21494);
script_xref(name:"CERT", value:"599832");
script_xref(name:"CERT", value:"694344");
script_xref(name:"MSFT", value:"MS06-072");
script_xref(name:"MSKB", value:"925454");
script_name(english:"MS06-072: Cumulative Security Update for Internet Explorer (925454)");
script_summary(english:"Determines the presence of update 925454");
script_set_attribute(attribute:"synopsis", value:
"Arbitrary code can be executed on the remote host through the web client.");
script_set_attribute(attribute:"description", value:
"The remote host is missing the IE cumulative security update 925454.
The remote version of IE is vulnerable to several flaws that could allow
an attacker to execute arbitrary code on the remote host.
Note that Microsoft has re-released this hotfix as its initial version
contained a buffer overflow.");
script_set_attribute(attribute:"see_also", value:"https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2006/ms06-072");
script_set_attribute(attribute:"solution", value:
"Microsoft has released a set of patches for Windows 2000, XP and
2003.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2006/12/12");
script_set_attribute(attribute:"patch_publication_date", value:"2006/12/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2006/12/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.");
script_family(english:"Windows : Microsoft Bulletins");
script_dependencies("smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
script_require_keys("SMB/MS_Bulletin_Checks/Possible");
script_require_ports(139, 445, 'Host/patch_management_checks');
exit(0);
}
include("audit.inc");
include("smb_hotfixes_fcheck.inc");
include("smb_hotfixes.inc");
include("smb_func.inc");
include("misc_func.inc");
get_kb_item_or_exit("SMB/MS_Bulletin_Checks/Possible");
bulletin = 'MS06-072';
kb = '925454';
kbs = make_list(kb);
if (get_kb_item("Host/patch_management_checks")) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);
get_kb_item_or_exit("SMB/Registry/Enumerated");
get_kb_item_or_exit("SMB/WindowsVersion", exit_code:1);
if (hotfix_check_sp_range(win2k:'4,5', xp:'2', win2003:'0,1') <= 0) audit(AUDIT_OS_SP_NOT_VULN);
rootfile = hotfix_get_systemroot();
if (!rootfile) exit(1, "Failed to get the system root.");
share = hotfix_path2share(path:rootfile);
if (!is_accessible_share(share:share)) audit(AUDIT_SHARE_FAIL, share);
if ( hotfix_is_vulnerable(os:"5.2", sp:0, file:"Mshtml.dll", version:"6.0.3790.605", dir:"\system32", bulletin:bulletin, kb:kb) ||
hotfix_is_vulnerable(os:"5.2", sp:1, file:"Mshtml.dll", version:"6.0.3790.2817", dir:"\system32", bulletin:bulletin, kb:kb) ||
hotfix_is_vulnerable(os:"5.1", sp:2, file:"Mshtml.dll", version:"6.0.2900.3020", dir:"\system32", bulletin:bulletin, kb:kb) ||
hotfix_is_vulnerable(os:"5.0", file:"Mshtml.dll", version:"6.0.2800.1586", min_version:"6.0.0.0", dir:"\system32", bulletin:bulletin, kb:kb) ||
hotfix_is_vulnerable(os:"5.0", file:"Mshtml.dll", version:"5.0.3846.2300", dir:"\system32", bulletin:bulletin, kb:kb) )
{
set_kb_item(name:"SMB/Missing/"+bulletin, value:TRUE);
hotfix_security_hole();
hotfix_check_fversion_end();
exit(0);
}
else
{
hotfix_check_fversion_end();
audit(AUDIT_HOST_NOT, 'affected');
}
Related
seebug
seebug
Microsoft IEε€δΈͺ代η ζ§θ‘εδΏ‘ζ―ζ³ι²ζΌζ΄οΌMS06-073οΌ
2006-12-13 00:00:00
securityvulns
securityvulns
Microsoft Security Bulletin MS06-072
2006-12-12 00:00:00
cve
cve
cert
cert
checkpoint_advisories
checkpoint_advisories
zdi
zdi
Related for SMB_NT_MS06-072.NASL