Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS19_DEC_VISUAL_STUDIO.NASL
HistoryDec 10, 2019 - 12:00 a.m.

Security Updates for Microsoft Visual Studio Products (December 2019)

2019-12-1000:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
150

8.5 High

AI Score

Confidence

High

JSON

The Microsoft Visual Studio Products are missing security updates. It is, therefore, affected by multiple vulnerabilities :

  • A tampering vulnerability exists when Git for Visual Studio improperly handles virtual drive paths. An attacker who successfully exploited this vulnerability could write arbitrary files and directories to certain locations on a vulnerable system. However, an attacker would have limited control over the destination of the files and directories. (CVE-2019-1351)

  • A remote code execution vulnerability exists when Git for Visual Studio improperly sanitizes input. An attacker who successfully exploited this vulnerability could take control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
    (CVE-2019-1349, CVE-2019-1350, CVE-2019-1352, CVE-2019-1354, CVE-2019-1387)

  • A spoofing vulnerability exists in Visual Studio Live Share when a guest connected to a Live Share session is redirected to an arbitrary URL specified by the session host. An attacker who successfully exploited this vulnerability could cause a connected guest’s computer to open a browser and navigate to a URL without consent from the guest. (CVE-2019-1486)

#
# (C) Tenable Network Security, Inc.
#

# The descriptive text and package checks in this plugin were  
# extracted from the Microsoft Security Updates API. The text
# itself is copyright (C) Microsoft Corporation.
#

include('compat.inc');

if (description)
{
  script_id(131939);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/04");

  script_cve_id(
    "CVE-2019-1349",
    "CVE-2019-1350",
    "CVE-2019-1351",
    "CVE-2019-1352",
    "CVE-2019-1354",
    "CVE-2019-1387",
    "CVE-2019-1486"
  );

  script_name(english:"Security Updates for Microsoft Visual Studio Products (December 2019)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft Visual Studio Products are affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The Microsoft Visual Studio Products are missing security
updates. It is, therefore, affected by multiple
vulnerabilities :

  - A tampering vulnerability exists when Git for Visual
    Studio improperly handles virtual drive paths. An
    attacker who successfully exploited this vulnerability
    could write arbitrary files and directories to certain
    locations on a vulnerable system. However, an attacker
    would have limited control over the destination of the
    files and directories.  (CVE-2019-1351)

  - A remote code execution vulnerability exists when Git
    for Visual Studio improperly sanitizes input. An
    attacker who successfully exploited this vulnerability
    could take control of an affected system. An attacker
    could then install programs; view, change, or delete
    data; or create new accounts with full user rights.
    Users whose accounts are configured to have fewer user
    rights on the system could be less impacted than users
    who operate with administrative user rights.
    (CVE-2019-1349, CVE-2019-1350, CVE-2019-1352,
    CVE-2019-1354, CVE-2019-1387)

  - A spoofing vulnerability exists in Visual Studio Live
    Share when a guest connected to a Live Share session is
    redirected to an arbitrary URL specified by the session
    host. An attacker who successfully exploited this
    vulnerability could cause a connected guest's computer
    to open a browser and navigate to a URL without consent
    from the guest.  (CVE-2019-1486)");
  # https://docs.microsoft.com/en-us/visualstudio/releasenotes/vs2017-relnotes#-visual-studio-2017-version-15918-
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?12d98124");
  # https://docs.microsoft.com/en-us/visualstudio/releases/2019/release-notes#--visual-studio-2019-version-1641-
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?08e082ad");
  # https://docs.microsoft.com/en-us/visualstudio/releases/2019/release-notes-v16.0#--visual-studio-2019-version-16010-
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?b4bf32ac");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released Visual Studio 2017 15.9.18, Visual Studio 2019 16.0.19,
and Visual Studio 2019 16.4.1 to address this issue.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-1354");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2019-1387");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/12/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:visual_studio");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows : Microsoft Bulletins");

  script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ms_bulletin_checks_possible.nasl", "microsoft_visual_studio_installed.nbin");
  script_require_keys("SMB/MS_Bulletin_Checks/Possible", "installed_sw/Microsoft Visual Studio");
  script_require_ports(139, 445, "Host/patch_management_checks");

  exit(0);
}
include('audit.inc');
include('misc_func.inc');
include('install_func.inc');
include('global_settings.inc');
include('smb_func.inc');
include('smb_hotfixes.inc');
include('smb_hotfixes_fcheck.inc');

get_kb_item_or_exit('installed_sw/Microsoft Visual Studio');

port = kb_smb_transport();
appname = 'Microsoft Visual Studio';

installs = get_installs(app_name:appname, exit_if_not_found:TRUE);

report = '';

foreach install (installs[1])
{
  version = install['version'];
  path = install['path'];
  prod = install['product_version'];

  fix = '';

  # VS 2017 version 15.9
  if (prod == '2017' && version =~ '^15\\.[0-9]\\.')
  {
    fix = '15.9.28307.960';

    if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)
    {
      report +=
        '\n  Path              : ' + path +
        '\n  Installed version : ' + version +
        '\n  Fixed version     : ' + fix +
        '\n';
    }
  }
  # VS 2019 Version 16.0
  else if (prod == '2019' && version =~ '^16\\.0\\.')
  {
    fix = '16.0.28803.631';
    if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)
    {
      report +=
        '\n  Path              : ' + path +
        '\n  Installed version : ' + version +
        '\n  Fixed version     : ' + fix +
        '\n';
    }
  }
  # VS 2019 Version 16.4
  else if (prod == '2019' && version =~ '^16\\.[1-4]\\.')
  {
    fix = '16.4.29609.76';
    if (ver_compare(ver: version, fix: fix, strict:FALSE) < 0)
    {
      report +=
        '\n  Path              : ' + path +
        '\n  Installed version : ' + version +
        '\n  Fixed version     : ' + fix +
        '\n';
    }
  }
}

if (empty(report))
  audit(AUDIT_INST_VER_NOT_VULN, appname);

security_report_v4(port:port, severity:SECURITY_HOLE, extra:report);
VendorProductVersionCPE
microsoftvisual_studiocpe:/a:microsoft:visual_studio

Related

kaspersky 1
osv 10
ubuntucve 7
alpinelinux 7
debiancve 7
cve 9
redhatcve 7
prion 9
nessus 40
oraclelinux 2
openvas 14
fedora 3
amazon 3
altlinux 2
suse 3
cloudfoundry 1
ubuntu 1
gentoo 2
qualysblog 1
redhat 5
archlinux 2
threatpost 1
debian 4
mageia 2
veracode 6
mscve 7
symantec 7
centos 1
ibm 2
rosalinux 1
kaspersky
kaspersky
KLA11618 Multiple vulnerabilities in Microsoft Developer Tools
2019-12-10 00:00:00
osv
osv
CVE-2019-1352
2020-01-24 21:15:12
CVE-2019-1349
2020-01-24 21:15:12
CVE-2019-1354
2020-01-24 21:15:12
ubuntucve
ubuntucve
CVE-2019-1349
2019-12-10 00:00:00
CVE-2019-1352
2019-12-10 00:00:00
CVE-2019-1350
2019-12-10 00:00:00
alpinelinux
alpinelinux
CVE-2019-1349
2020-01-24 21:15:00
CVE-2019-1352
2020-01-24 21:15:00
CVE-2019-1354
2020-01-24 21:15:00
debiancve
debiancve
CVE-2019-1354
2020-01-24 21:15:00
CVE-2019-1350
2020-01-24 21:15:00
CVE-2019-1352
2020-01-24 21:15:00
cve
cve
CVE-2019-1354
2020-01-24 21:15:00
CVE-2019-1350
2020-01-24 21:15:00
CVE-2019-1352
2020-01-24 21:15:00
redhatcve
redhatcve
CVE-2019-1350
2019-12-11 00:21:07
CVE-2019-1352
2019-12-11 00:50:56
CVE-2019-1354
2019-12-11 00:51:03
prion
prion
Remote code execution
2020-01-24 21:15:00
Remote code execution
2020-01-24 21:15:00
Remote code execution
2020-01-24 21:15:00
nessus
nessus
Fedora 31 : libgit2 (2019-9c3d054f39)
2019-12-17 00:00:00
openSUSE Security Update : git (openSUSE-2020-123)
2020-01-30 00:00:00
Amazon Linux 2 : git (ALAS-2023-1943)
2023-02-23 00:00:00
oraclelinux
oraclelinux
git security update
2019-12-19 00:00:00
git security update
2020-01-16 00:00:00
openvas
openvas
Fedora Update for libgit2 FEDORA-2019-9c3d054f39
2020-01-09 00:00:00
Ubuntu Update for git USN-4220-1
2019-12-11 00:00:00
Fedora Update for git FEDORA-2019-1cec196e20
2020-01-08 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: libgit2-0.28.4-1.fc31
2019-12-17 01:46:03
[SECURITY] Fedora 31 Update: git-2.24.1-1.fc31
2019-12-18 01:56:26
[SECURITY] Fedora 30 Update: git-2.21.1-1.fc30
2020-01-04 22:16:13
amazon
amazon
Important: git
2023-02-17 00:11:00
Important: git
2019-12-13 19:06:00
Important: git
2019-12-09 22:06:00
altlinux
altlinux
Security fix for the ALT Linux 8 package git version 2.24.1-alt1
2019-12-12 00:00:00
Security fix for the ALT Linux 10 package git version 2.24.1-alt1
2019-12-08 00:00:00
suse
suse
Security update for git (important)
2020-01-29 00:00:00
Security update for git (moderate)
2020-05-02 00:00:00
Security update for libgit2 (important)
2022-10-04 00:00:00
cloudfoundry
cloudfoundry
USN-4220-1: Git vulnerabilities | Cloud Foundry
2019-12-18 00:00:00
ubuntu
ubuntu
Git vulnerabilities
2019-12-10 00:00:00
gentoo
gentoo
Git: Multiple vulnerabilities
2020-03-15 00:00:00
libgit2: Multiple vulnerabilities
2020-03-19 00:00:00
qualysblog
qualysblog
December 2019 Patch Tuesday – 36 Vulns, 7 Critical, Actively Attacked Win32k vuln, Adobe vulns
2019-12-10 19:04:23
redhat
redhat
(RHSA-2020:0228) Important: git security update
2020-01-27 08:04:40
(RHSA-2019:4356) Important: git security update
2019-12-19 18:18:24
(RHSA-2020:0002) Important: rh-git218-git security update
2020-01-02 08:21:54
archlinux
archlinux
[ASA-201912-5] libgit2: arbitrary code execution
2019-12-18 00:00:00
[ASA-201912-6] git: arbitrary code execution
2019-12-18 00:00:00
threatpost
threatpost
Microsoft Zaps Actively Exploited Zero-Day Bug
2019-12-10 21:21:24
debian
debian
[SECURITY] [DLA 2059-1] git security update
2020-01-23 14:27:34
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
[SECURITY] [DSA 4581-1] git security update
2019-12-10 19:56:55
mageia
mageia
Updated libgit2 packages fix security vulnerabilities
2019-12-15 21:03:05
Updated git packages fix security vulnerabilities
2019-12-15 21:03:05
veracode
veracode
Remote Code Execution (RCE)
2020-05-10 23:22:09
Remote Code Execution (RCE)
2020-05-10 23:22:08
Authorization Bypass
2019-12-20 00:15:19
mscve
mscve
Git for Visual Studio Remote Code Execution Vulnerability
2019-12-10 08:00:00
Git for Visual Studio Remote Code Execution Vulnerability
2019-12-10 08:00:00
Git for Visual Studio Tampering Vulnerability
2019-12-10 08:00:00
symantec
symantec
Microsoft Git for Visual Studio CVE-2019-1349 Remote Code Execution Vulnerability
2019-12-10 00:00:00
Microsoft Git for Visual Studio CVE-2019-1354 Remote Code Execution Vulnerability
2019-12-10 00:00:00
Microsoft Git for Visual Studio CVE-2019-1351 Tampering Security Bypass Vulnerability
2019-12-10 00:00:00
centos
centos
emacs, git, gitk, gitweb, perl security update
2020-01-18 14:51:34
ibm
ibm
Security Bulletin: Action required for WebSphere Message Broker Hypervisor Edition V8.0 for security vulnerabilities in Red Hat Linux
2020-01-09 10:32:26
Security Bulletin: IBM Integration Bus Hyper visor Edition V9.0 require customer action for security vulnerabilities in Red Hat Linux
2019-12-20 08:47:33
rosalinux
rosalinux
Advisory ROSA-SA-2021-1843
2021-07-02 16:45:45

8.5 High

AI Score

Confidence

High

JSON
Related for SMB_NT_MS19_DEC_VISUAL_STUDIO.NASL
kaspersky1osv10ubuntucve7alpinelinux7debiancve7cve9redhatcve7prion9nessus40oraclelinux2openvas14fedora3amazon3altlinux2suse3cloudfoundry1ubuntu1gentoo2qualysblog1redhat5archlinux2threatpost1debian4mageia2veracode6mscve7symantec7centos1ibm2rosalinux1