Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS21_AUG_OFFICE_SHAREPOINT_2019.NASL
HistoryAug 10, 2021 - 12:00 a.m.

Security Updates for Microsoft SharePoint Server 2019 (August 2021)

2021-08-1000:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

5.9 Medium

AI Score

Confidence

High

JSON

The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by a Server Spoofing Vulnerability.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the Microsoft Security Updates API. The text
# itself is copyright (C) Microsoft Corporation.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(152429);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/29");

  script_cve_id("CVE-2021-36940");
  script_xref(name:"MSKB", value:"5002000");
  script_xref(name:"MSFT", value:"MS21-5002000");
  script_xref(name:"IAVA", value:"2021-A-0371-S");

  script_name(english:"Security Updates for Microsoft SharePoint Server 2019 (August 2021)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is affected by a server spoofing vulnerability.");
  script_set_attribute(attribute:"description", value:
"The Microsoft SharePoint Server 2019 installation on the remote host is missing security updates. 
It is, therefore, affected by a Server Spoofing Vulnerability.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version   
number.");
  script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002000");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released the following security updates to address these issues:  
  -KB5002000");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-36940");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/08/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/08/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/08/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:sharepoint_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows : Microsoft Bulletins");

  script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("microsoft_sharepoint_installed.nbin", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
  script_require_keys("SMB/MS_Bulletin_Checks/Possible");
  script_require_ports(139, 445, "Host/patch_management_checks");

  exit(0);
}

include('smb_func.inc');
include('smb_hotfixes.inc');
include('smb_hotfixes_fcheck.inc');
include('smb_reg_query.inc');
include('install_func.inc');

get_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');

var bulletin = 'MS21-08';
var app_name = 'Microsoft SharePoint Server';

var kbs = make_list(
  '5002000'
);

if (get_kb_item('Host/patch_management_checks'))
  hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);

get_kb_item_or_exit('SMB/Registry/Enumerated', exit_code:1);

# Get path information for Windows.
var windir = hotfix_get_systemroot();
if (isnull(windir)) exit(1, 'Failed to determine the location of %windir%.');

var install = get_single_install(app_name:app_name);
var kb_checks =
{
  '2019':
  { '0':
    {'Server':
      [
        {
         'kb'           : '5002000',
         'path'         : install['path'],
         'append'       : 'bin',
         'file'         : 'ascalc.dll',
         'version'      : '16.0.10377.20000',
         'product_name' : 'Microsoft SharePoint Server 2019 Core'
        }
      ]
    }
  }
};

# Get the specific product / path
var param_list = kb_checks[install['Product']][install['SP']][install['Edition']];
# audit if not affected
if(isnull(param_list)) audit(AUDIT_HOST_NOT, 'affected');
var port = kb_smb_transport();
# grab the path otherwise
var check;
foreach check (param_list)
{
  if (!isnull(check['version']))
  {
    var path = check['path'];
    if (!empty_or_null(check['append']))
      var path = hotfix_append_path(path:check['path'], value:check['append']);
    are_we_vuln = hotfix_check_fversion(
      file:check['file'],
      version:check['version'],
      path:path,
      kb:check['kb'],
      product:check['product_name']
    );
  }
  else
  {
    report = '\n';
    if (check['product_name'])
      report += '  Product : ' + check['product_name'] + '\n';
    if (check['kb'])
      report += '  KB : ' + check['kb'] + '\n';
    hotfix_add_report(report, kb:check['kb']);
  }

  if(are_we_vuln == HCF_OLDER) vuln = TRUE;

}
if (vuln)
{
  port = kb_smb_transport();
  replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);
  hotfix_security_warning();
  hotfix_check_fversion_end();
  exit(0);
}
else
{
  hotfix_check_fversion_end();
  audit(AUDIT_INST_VER_NOT_VULN, app_name);
}
VendorProductVersionCPE
microsoftsharepoint_servercpe:/a:microsoft:sharepoint_server

Related

mskb 3
prion 1
nessus 2
mscve 1
cnvd 1
cve 1
kaspersky 1
qualysblog 1
rapid7blog 1
mskb
mskb
Description of the security update for SharePoint Server 2019: August 10, 2021 (KB5002000)
2021-08-10 07:00:00
Description of the security update for SharePoint Enterprise Server 2013: August 10, 2021 (KB4011600)
2021-08-10 07:00:00
Description of the security update for SharePoint Enterprise Server 2016: August 10, 2021 (KB5002002)
2021-08-10 07:00:00
prion
prion
Spoofing
2021-08-12 18:15:00
nessus
nessus
Security Updates for Microsoft SharePoint Server 2013 (August 2021)
2021-08-10 00:00:00
Security Updates for Microsoft Sharepoint 2016 (August 2021)
2021-08-10 00:00:00
mscve
mscve
Microsoft SharePoint Server Spoofing Vulnerability
2021-08-10 07:00:00
cnvd
cnvd
Microsoft SharePoint Server Spoofing Vulnerability (CNVD-2022-59601)
2021-08-16 00:00:00
cve
cve
CVE-2021-36940
2021-08-12 18:15:00
kaspersky
kaspersky
KLA12255 Multiple vulnerabilities in Microsoft Office
2021-08-10 00:00:00
qualysblog
qualysblog
Microsoft and Adobe Patch Tuesday (August 2021) – Microsoft 51 Vulnerabilities with 7 Critical, Adobe 29 Vulnerabilities
2021-08-10 19:58:49
rapid7blog
rapid7blog
Patch Tuesday - August 2021
2021-08-11 03:19:33

5.9 Medium

AI Score

Confidence

High

JSON
Related for SMB_NT_MS21_AUG_OFFICE_SHAREPOINT_2019.NASL
mskb3prion1nessus2mscve1cnvd1cve1kaspersky1qualysblog1rapid7blog1