Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS23_FEB_3D_BUILDER.NASL
HistoryFeb 16, 2023 - 12:00 a.m.

Microsoft 3D Builder app Multiple Remote Code Execution Vulnerabilities (February 2023)

2023-02-1600:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
55
JSON

The version of the Microsoft 3D Builder app installed on the remote Windows host is prior to 20.0.3.0. It is, therefore, affected by multiple unspecified remote code execution vulnerabilities.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from the Microsoft Security Updates API. The text
# itself is copyright (C) Microsoft Corporation.
##

include('compat.inc');

if (description)
{
  script_id(171547);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/27");

  script_cve_id("CVE-2023-23377", "CVE-2023-23390");
  script_xref(name:"IAVA", value:"2023-A-0094-S");

  script_name(english:"Microsoft 3D Builder app Multiple Remote Code Execution Vulnerabilities (February 2023)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft 3D Builder app installed on the remote host is affected by multiple remote code execution vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of the Microsoft 3D Builder app installed on the remote Windows host is prior to 20.0.3.0. It
is, therefore, affected by multiple unspecified remote code execution vulnerabilities.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23377");
  script_set_attribute(attribute:"see_also", value:"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-23390");
  script_set_attribute(attribute:"solution", value:
"Update to the latest Microsoft 3D Builder app via the Windows App Store.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-23390");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/02/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/02/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/02/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:microsoft:windows");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:3d_builder");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("smb_hotfixes.nasl", "wmi_enum_windows_app_store.nbin");
  script_require_keys("SMB/Registry/Enumerated", "WMI/Windows App Store/Enumerated");
  script_require_ports(139, 445);

  exit(0);
}

include('vcf.inc');
include('vcf_extras.inc');

var apps = ['Microsoft.3DBuilder'];

var app_info = vcf::microsoft_appstore::get_app_info(app_list:apps);

vcf::check_granularity(app_info:app_info, sig_segments:3);

var constraints = [
    { 'fixed_version':'20.0.3.0', 'fixed_display':'Update to the latest Microsoft 3D Builder app via the Microsoft Store.'}
];

vcf::microsoft_appstore::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);
VendorProductVersionCPE
microsoft3d_buildercpe:/a:microsoft:3d_builder
microsoftwindowscpe:/o:microsoft:windows

Related

kaspersky 1
mscve 2
cnvd 2
prion 2
cve 2
zdi 3
cvelist 2
rapid7blog 1
kaspersky
kaspersky
KLA20231 Multiple vulnerabilities in Microsoft Apps
2023-02-14 00:00:00
mscve
mscve
3D Builder Remote Code Execution Vulnerability
2023-02-14 08:00:00
3D Builder Remote Code Execution Vulnerability
2023-02-14 08:00:00
cnvd
cnvd
Microsoft 3D Builder has an unspecified vulnerability (CNVD-2023-09624)
2023-02-15 00:00:00
Microsoft 3D Builder has an unspecified vulnerability (CNVD-2023-09626)
2023-02-15 00:00:00
prion
prion
Remote code execution
2023-02-14 20:15:00
Remote code execution
2023-02-14 20:15:00
cve
cve
CVE-2023-23377
2023-02-14 20:15:16
CVE-2023-23390
2023-02-14 20:15:17
zdi
zdi
Microsoft 3D Builder OBJ File Parsing Memory Corruption Remote Code Execution Vulnerability
2023-02-24 00:00:00
Microsoft Print 3D OBJ File Parsing Memory Corruption Remote Code Execution Vulnerability
2023-03-31 00:00:00
Microsoft 3D Builder WRL File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
2023-02-24 00:00:00
cvelist
cvelist
3D Builder Remote Code Execution Vulnerability
2023-02-14 19:33:52
3D Builder Remote Code Execution Vulnerability
2023-02-14 19:33:50
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
JSON
Related for SMB_NT_MS23_FEB_3D_BUILDER.NASL
kaspersky1mscve2cnvd2prion2cve2zdi3cvelist2rapid7blog1