Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS22_NOV_OFFICE_SHAREPOINT_SUBSCR_LANGUAGE.NASL
HistoryDec 08, 2022 - 12:00 a.m.

Security Updates for Microsoft SharePoint Server Subscription Edition Language Pack (November 2022)

2022-12-0800:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
JSON

The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing a language pack security updates. It is, therefore, affected by multiple vulnerabilities:

  • A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. (CVE-2022-41061, CVE-2022-41062)

  • An information disclosure vulnerability. An attacker can exploit this to disclose potentially sensitive information. (CVE-2022-41103)

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(168503);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/20");

  script_cve_id("CVE-2022-41061", "CVE-2022-41062", "CVE-2022-41103");
  script_xref(name:"MSKB", value:"5002291");
  script_xref(name:"MSFT", value:"MS22-5002291");
  script_xref(name:"IAVA", value:"2022-A-0481-S");

  script_name(english:"Security Updates for Microsoft SharePoint Server Subscription Edition Language Pack (November 2022)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft SharePoint Server Subscription Edition installation on the remote host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The Microsoft SharePoint Server Subscription Edition installation on the remote host 
is missing a language pack security updates. It is, therefore, affected by multiple vulnerabilities:

  - A remote code execution vulnerability. An attacker can
    exploit this to bypass authentication and execute
    unauthorized arbitrary commands. (CVE-2022-41061,
    CVE-2022-41062)

  - An information disclosure vulnerability. An attacker can
    exploit this to disclose potentially sensitive
    information. (CVE-2022-41103)");
  script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002291");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released KB5002291 to address this issue.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-41062");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/11/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/11/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2022/12/08");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:sharepoint_server");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows : Microsoft Bulletins");

  script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("microsoft_sharepoint_installed.nbin", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl", "smb_language_detection.nasl");
  script_require_keys("SMB/MS_Bulletin_Checks/Possible");
  script_require_ports(139, 445, "Host/patch_management_checks");

  exit(0);
}

include('vcf_extras_microsoft.inc');

var language_lists = get_kb_list('SMB/base_language_installs'); 
# Normally this is used as language_lists = make_list(language_lists);
# In this plugin, it only is checked to insure that we have language files on machine.
if (isnull(language_lists)) exit(1, 'Language File Scan Information not found');

language_lists = make_list(
'1025', 
'1026', 
'1027', 
'1028', 
'1029', 
'1030', 
'1031', 
'1032', 
'1035',
'1036',
'1037',
'1038',
'1040',
'1041',
'1042',
'1043',
'1044',
'1045',
'1046',
'1048',
'1049',
'1050',
'1051',
'1053',
'1054',
'1055',
'1057',
'1058',
'1060',
'1061',
'1062',
'1063',
'1066',
'1068',
'1069',
'1071',
'1081',
'1086',
'1087',
'1106',
'1110',
'2052',
'2070',
'2108',
'3082',
'5146',
'9242',
'10266'
);

var app_info = vcf::microsoft::sharepoint::get_app_info();
var kb_checks = 
[
  {
    'product'      : 'Subscription Edition',
    'edition'      : 'Server',
    'kb'           : '5002291',
    'path'         : app_info.path,
    'version'      : '16.0.15601.20238',
    'append'       : 'bin\\*',
    'file'         : 'mssmsg.dll',
    'language'     : language_lists,
    'product_name' : 'Microsoft SharePoint Enterprise Server Subscription Edition'
  }
];
vcf::microsoft::sharepoint::check_version_and_report
(
  app_info:app_info, 
  bulletin:'MS22-11',
  constraints:kb_checks, 
  severity:SECURITY_HOLE
);
VendorProductVersionCPE
microsoftsharepoint_servercpe:/a:microsoft:sharepoint_server

Related

mskb 13
nessus 9
openvas 3
prion 3
mscve 3
cve 3
kaspersky 1
rapid7blog 1
mskb
mskb
Description of the security update for SharePoint Server Subscription Edition: November 8, 2022 (KB5002296)
2022-11-08 08:00:00
Description of the security update for SharePoint Server 2019: November 8, 2022 (KB5002294)
2022-11-08 08:00:00
Description of the security update for SharePoint Enterprise Server 2016: November 8, 2022 (KB5002305)
2022-11-08 08:00:00
nessus
nessus
Security Updates for Microsoft SharePoint Server Subscription Edition (November 2022)
2022-11-10 00:00:00
Security Updates for Microsoft SharePoint Server 2019 (November 2022)
2022-11-10 00:00:00
Security Updates for Microsoft SharePoint Server 2016 (November 2022)
2022-11-10 00:00:00
openvas
openvas
Microsoft Word 2013 Service Pack 1 Multiple Vulnerabilities (KB5002217)
2022-11-09 00:00:00
Microsoft Word 2016 Multiple Vulnerabilities (KB5002223)
2022-11-09 00:00:00
Microsoft Office 365 (2016 Click-to-Run) Multiple Vulnerabilities (Nov 2022)
2022-11-09 00:00:00
prion
prion
Remote code execution
2022-11-09 22:15:00
Remote code execution
2022-11-09 22:15:00
Information disclosure
2022-11-09 22:15:00
mscve
mscve
Microsoft SharePoint Server Remote Code Execution Vulnerability
2022-11-08 08:00:00
Microsoft Word Remote Code Execution Vulnerability
2022-11-08 08:00:00
Microsoft Word Information Disclosure Vulnerability
2022-11-08 08:00:00
cve
cve
CVE-2022-41062
2022-11-09 22:15:00
CVE-2022-41061
2022-11-09 22:15:00
CVE-2022-41103
2022-11-09 22:15:00
kaspersky
kaspersky
KLA20044 Multiple vulnerabilities in Microsoft Office
2022-11-08 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - November 2022
2022-11-08 20:02:57
JSON
Related for SMB_NT_MS22_NOV_OFFICE_SHAREPOINT_SUBSCR_LANGUAGE.NASL
mskb13nessus9openvas3prion3mscve3cve3kaspersky1rapid7blog1