Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS20_JUN_HEVC_OOB.NASLHistoryJul 02, 2020 - 12:00 a.m.
Microsoft Windows Codecs Library Multiple Vulnerabilities (June 2020)
2020-07-0200:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
37
8.4 High
AI Score
Confidence
High
The Windows ‘HEVC Video Extensions’ or ‘HEVC from Device Manufacturer’ app installed on the remote host is affected by two code execution vulnerabilities.
An authenticated, local attacker can exploit either of these vulnerabilities to bypass additional authentication and execute arbitrary commands.
#
# (C) Tenable Network Security, Inc.
#
include('compat.inc');
if (description)
{
script_id(138088);
script_version("1.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/27");
script_cve_id("CVE-2020-1425", "CVE-2020-1457");
script_xref(name:"IAVA", value:"2020-A-0300-S");
script_name(english:"Microsoft Windows Codecs Library Multiple Vulnerabilities (June 2020)");
script_set_attribute(attribute:"synopsis", value:
"The Windows app installed on the remote host is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The Windows 'HEVC Video Extensions' or 'HEVC from Device Manufacturer' app
installed on the remote host is affected by two code execution vulnerabilities.
An authenticated, local attacker can exploit either of these vulnerabilities to
bypass additional authentication and execute arbitrary commands.");
# https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1425
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5d129577");
# https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2020-1457
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6e8b957f");
script_set_attribute(attribute:"solution", value:
"Upgrade to app version 1.0.31822.0, 1.0.31823.0 or later via the Microsoft Store.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-1457");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/06/30");
script_set_attribute(attribute:"patch_publication_date", value:"2020/06/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/07/02");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("smb_hotfixes.nasl", "wmi_enum_windows_app_store.nbin");
script_require_keys("SMB/Registry/Enumerated", "WMI/Windows App Store/Enumerated");
script_require_ports(139, 445);
exit(0);
}
include('vcf.inc');
include('vcf_extras.inc');
# Thanks to MS for two nearly identical package identity names:
# Microsoft.HEVCVideoExtension - HEVC Video Extensions from Device Manufacturer
# Microsoft.HEVCVideoExtensions - HEVC Video Extensions
var apps = ['Microsoft.HEVCVideoExtension', 'Microsoft.HEVCVideoExtensions'];
var app_info = vcf::microsoft_appstore::get_app_info(app_list:apps);
vcf::check_granularity(app_info:app_info, sig_segments:3);
var constraints = [
{ 'fixed_version' : '1.0.31822.0' }
];
vcf::microsoft_appstore::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_WARNING);
Related
prion
prion
Remote code execution
2020-07-27 19:15:00
Remote code execution
2020-07-27 19:15:00
attackerkb
attackerkb
CVE-2020-1425 - Windows Codecs Library RCE
2020-07-03 00:00:00
cisa
cisa
Microsoft Releases Security Updates for Windows 10, Windows Server
2020-07-01 00:00:00
threatpost
threatpost
Microsoft Releases Emergency Security Updates for Windows 10, Server
2020-07-01 12:39:29
thn
thn
Microsoft Releases Urgent Windows Update to Patch Two Critical Flaws
2020-07-01 12:25:00
kaspersky
kaspersky
KLA11826 ACE vulnerabilities in Microsoft Windows
2020-06-30 00:00:00
cve
cve
CVE-2020-1425
2020-07-27 19:15:00
CVE-2020-1457
2020-07-27 19:15:00
openvas
openvas
zdi
zdi
mscve
mscve
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
2020-06-30 07:00:00
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
2020-06-30 07:00:00
trendmicroblog
trendmicroblog
securelist
securelist
IT threat evolution Q2 2020. PC statistics
2020-09-03 10:30:23