Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS22_APR_SKYPE.NASLHistoryApr 15, 2022 - 12:00 a.m.
Security Updates for Microsoft Skype for Business and Microsoft Lync (April 2022)
2022-04-1500:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
78
5.9 Medium
AI Score
Confidence
High
The Microsoft Skype for Business or Microsoft Lync installation on the remote host is missing security updates.
It is, therefore, affected by multiple vulnerabilities:
-
An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. (CVE-2022-26911)
-
A session spoofing vulnerability exists. An attacker can exploit this to perform actions with the privileges of another user. (CVE-2022-26910)
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(159763);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/01");
script_cve_id("CVE-2022-26910", "CVE-2022-26911");
script_xref(name:"MSKB", value:"5012681");
script_xref(name:"MSKB", value:"5012686");
script_xref(name:"MSFT", value:"MS22-5012681");
script_xref(name:"MSFT", value:"MS22-5012686");
script_xref(name:"IAVA", value:"2022-A-0155-S");
script_name(english:"Security Updates for Microsoft Skype for Business and Microsoft Lync (April 2022)");
script_set_attribute(attribute:"synopsis", value:
"The Microsoft Skype for Business or Microsoft Lync installation on the remote host is affected by multiple vulnerabilities.");
script_set_attribute(attribute:"description", value:
"The Microsoft Skype for Business or Microsoft Lync
installation on the remote host is missing security updates.
It is, therefore, affected by multiple vulnerabilities:
- An information disclosure vulnerability. An attacker can
exploit this to disclose potentially sensitive
information. (CVE-2022-26911)
- A session spoofing vulnerability exists. An attacker can
exploit this to perform actions with the privileges of
another user. (CVE-2022-26910)");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5012681");
script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5012686");
script_set_attribute(attribute:"solution", value:
"Microsoft has released the following security updates to address this issue:
-KB5012681
-KB5012686");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-26910");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2022-26911");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/04/12");
script_set_attribute(attribute:"patch_publication_date", value:"2022/04/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/04/15");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:skype_for_business");
script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:lync");
script_set_attribute(attribute:"stig_severity", value:"II");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows : Microsoft Bulletins");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("office_installed.nasl", "microsoft_lync_server_installed.nasl", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl");
script_require_keys("SMB/MS_Bulletin_Checks/Possible");
script_require_ports(139, 445, "Host/patch_management_checks");
exit(0);
}
include('smb_func.inc');
include('smb_hotfixes.inc');
include('smb_hotfixes_fcheck.inc');
include('install_func.inc');
get_kb_item_or_exit('SMB/MS_Bulletin_Checks/Possible');
var bulletin = 'MS22-04';
var kbs = make_list(
'5012681',
'5012686'
);
if (get_kb_item('Host/patch_management_checks')) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_WARNING);
get_kb_item_or_exit('installed_sw/Microsoft Lync');
get_kb_item_or_exit('SMB/Registry/Uninstall/Enumerated', exit_code:1);
var uninstall_list = get_kb_list('SMB/Registry/HKLM/SOFTWARE/Microsoft/Windows/CurrentVersion/Uninstall/*/DisplayName');
if (isnull(uninstall_list)) exit(1, 'Missing uninstall enumeration list.');
var vuln = FALSE;
var name_kb, prod, version_kb, kb, version, info;
foreach name_kb (keys(uninstall_list))
{
prod = uninstall_list[name_kb];
version_kb = name_kb - '/DisplayName' + '/DisplayVersion';
if (
'Server' >< prod && 'Core Components' >< prod
)
{
if ('Skype for Business' >< prod)
{
if ('2019' >< prod)
{
version = get_kb_item(version_kb);
if (!isnull(version) && (ver_compare(ver:version, minver:'7.0.2046.0', fix:'7.0.2046.396') < 0))
{
vuln = TRUE;
kb = '5012686';
info = '\n Product : ' + prod +
'\n Installed Version : ' + version +
'\n Fixed Version : 7.0.2046.396\n';
hotfix_add_report(info, bulletin:bulletin, kb:kb);
}
}
else if ('2015' >< prod)
{
version = get_kb_item(version_kb);
if (!isnull(version) && (ver_compare(ver:version, minver:'6.0.9319.0', fix:'6.0.9319.628') < 0))
{
vuln = TRUE;
kb = '5012686';
info = '\n Product : ' + prod +
'\n Installed Version : ' + version +
'\n Fixed Version : 6.0.9319.628\n';
hotfix_add_report(info, bulletin:bulletin, kb:kb);
}
}
}
else if ('Lync' >< prod && '2013' >< prod)
{
version = get_kb_item(version_kb);
if (!isnull(version) && (ver_compare(ver:version, minver:'5.0.8308.0', fix:'5.0.8308.1194') < 0))
{
vuln = TRUE;
kb = '5012681';
info = '\n Product : ' + prod +
'\n Installed Version : ' + version +
'\n Fixed Version : 5.0.8308.1194\n';
hotfix_add_report(info, bulletin:bulletin, kb:kb);
}
}
}
}
if (vuln)
{
replace_kb_item(name:'SMB/Missing/'+bulletin, value:TRUE);
hotfix_security_warning();
exit(0);
}
else
{
audit(AUDIT_HOST_NOT, 'affected');
}| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | skype_for_business | cpe:/a:microsoft:skype_for_business | |
| microsoft | lync | cpe:/a:microsoft:lync |
Related
mskb
mskb
prion
prion
Information disclosure
2022-04-15 19:15:00
Spoofing
2022-04-15 19:15:00
cve
cve
CVE-2022-26911
2022-04-15 19:15:00
CVE-2022-26910
2022-04-15 19:15:00
mscve
mscve
Skype for Business and Lync Spoofing Vulnerability
2022-04-12 08:00:00
Skype for Business Information Disclosure Vulnerability
2022-04-12 08:00:00
cnvd
cnvd
Microsoft Skype for Business and Lync Spoofing Vulnerability
2022-04-15 00:00:00
kaspersky
kaspersky
KLA12507 Multiple vulnerabilities in Microsoft Office
2022-04-12 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - April 2022
2022-04-12 18:48:11