Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.SMB_NT_MS23_FEB_OFFICE_SHAREPOINT_SUBSCR_LANGUAGE.NASL
HistoryFeb 17, 2023 - 12:00 a.m.

Security Updates for Microsoft SharePoint Server Subscription Edition Language Pack (February 2023)

2023-02-1700:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing a language pack security updates. It is, therefore, affected by a remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands.

#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(171609);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/03/09");

  script_cve_id("CVE-2023-21716");
  script_xref(name:"MSKB", value:"5002350");
  script_xref(name:"MSFT", value:"MS23-5002350");

  script_name(english:"Security Updates for Microsoft SharePoint Server Subscription Edition Language Pack (February 2023)");

  script_set_attribute(attribute:"synopsis", value:
"The Microsoft SharePoint Server Subscription Edition installation on the remote host is affected by a remote code execution.");
  script_set_attribute(attribute:"description", value:
"The Microsoft SharePoint Server Subscription Edition installation on the remote host is missing a language 
pack security updates. It is, therefore, affected by a remote code execution vulnerability. 
An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands.");
  script_set_attribute(attribute:"see_also", value:"https://support.microsoft.com/en-us/help/5002352");
  script_set_attribute(attribute:"solution", value:
"Microsoft has released KB5002352 to address this issue.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-21716");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/02/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/02/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/02/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:microsoft:sharepoint_server");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows : Microsoft Bulletins");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("microsoft_sharepoint_installed.nbin", "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl", "smb_language_detection.nasl");
  script_require_keys("SMB/MS_Bulletin_Checks/Possible");
  script_require_ports(139, 445, "Host/patch_management_checks");

  exit(0);
}

include('vcf_extras_microsoft.inc');

var language_lists = get_kb_list('SMB/base_language_installs'); 
# Normally this is used as language_lists = make_list(language_lists);
# In this plugin, it only is checked to insure that we have language files on machine.
if (isnull(language_lists)) exit(1, 'Language File Scan Information not found');

language_lists = make_list(
'1025', 
'1026', 
'1027', 
'1028', 
'1029', 
'1030', 
'1031', 
'1032', 
'1035',
'1036',
'1037',
'1038',
'1040',
'1041',
'1042',
'1043',
'1044',
'1045',
'1046',
'1048',
'1049',
'1050',
'1051',
'1053',
'1054',
'1055',
'1057',
'1058',
'1060',
'1061',
'1062',
'1063',
'1066',
'1068',
'1069',
'1071',
'1081',
'1086',
'1087',
'1106',
'1110',
'2052',
'2070',
'2108',
'3082',
'5146',
'9242',
'10266'
);

var app_info = vcf::microsoft::sharepoint::get_app_info();
var kb_checks = 
[
  {
    'product'      : 'Subscription Edition',
    'edition'      : 'Server',
    'kb'           : '5002352',
    'path'         : app_info.path,
    'version'      : '16.0.15601.20478',
    'append'       : 'bin\\*',
    'file'         : 'mssmsg.dll',
    'language'     : language_lists,
    'product_name' : 'Microsoft SharePoint Enterprise Server Subscription Edition'
  }
];
vcf::microsoft::sharepoint::check_version_and_report
(
  app_info:app_info, 
  bulletin:'MS23-02',
  constraints:kb_checks, 
  severity:SECURITY_HOLE
);
VendorProductVersionCPE
microsoftsharepoint_servercpe:/a:microsoft:sharepoint_server

Related

prion 1
openvas 3
cvelist 1
attackerkb 1
nessus 11
mskb 12
githubexploit 2
cve 1
mscve 1
cnvd 1
avleonov 2
kaspersky 1
krebs 1
malwarebytes 1
talosblog 1
qualysblog 1
rapid7blog 1
prion
prion
Remote code execution
2023-02-14 20:15:00
openvas
openvas
Microsoft Word 2016 Remote Code Execution Vulnerability (KB5002323)
2023-02-15 00:00:00
Microsoft Office Outlook 2019 RCE Vulnerability (Feb 2023) - Mac OS X
2023-02-15 00:00:00
Microsoft Word 2013 Service Pack 1 Remote Code Execution Vulnerability (KB5002316)
2023-02-15 00:00:00
cvelist
cvelist
Microsoft Word Remote Code Execution Vulnerability
2023-02-14 19:33:45
attackerkb
attackerkb
CVE-2023-21716
2023-02-14 00:00:00
nessus
nessus
Security Updates for Microsoft Word Products (February 2023)
2023-02-14 00:00:00
Security Updates for Microsoft Office Online Server (February 2023)
2023-02-17 00:00:00
Security Updates for Microsoft Word Products C2R (February 2023)
2023-02-16 00:00:00
mskb
mskb
Description of the security update for Word 2013: February 14, 2023 (KB5002316)
2023-02-14 08:00:00
Description of the security update for SharePoint Server Subscription Edition Language Pack: February 14, 2023 (KB5002352)
2023-02-14 08:00:00
Description of the security update for Office Online Server: February 14, 2023 (KB5002309)
2023-02-14 08:00:00
githubexploit
githubexploit
Exploit for Vulnerability in Microsoft
2023-03-24 15:58:25
Exploit for Vulnerability in Microsoft
2023-03-07 15:03:43
cve
cve
CVE-2023-21716
2023-02-14 20:15:14
mscve
mscve
Microsoft Word Remote Code Execution Vulnerability
2023-02-14 08:00:00
cnvd
cnvd
Microsoft Word Remote Code Execution Vulnerability (CNVD-2023-14998)
2023-02-17 00:00:00
avleonov
avleonov
Vulristics News: EPSS v3 Support, Integration into Cloud Advisor
2023-04-23 23:11:58
Microsoft Patch Tuesday February 2023: Win Graphics RCE, Edge RCE, Publisher SFB, CLFS EoP, Exchange RCEs, Word RCE, HoloLens1
2023-02-26 16:37:52
kaspersky
kaspersky
KLA20229 Multiple vulnerabilities in Microsoft Office
2023-02-14 00:00:00
krebs
krebs
Microsoft Patch Tuesday, February 2023 Edition
2023-02-14 21:01:41
malwarebytes
malwarebytes
Update now! February's Patch Tuesday tackles three zero-days
2023-02-15 03:00:00
talosblog
talosblog
Microsoft Patch Tuesday for February 2023 β€” Snort rules and prominent vulnerabilities
2023-02-14 18:09:22
qualysblog
qualysblog
The FebruaryΒ 2023 Patch Tuesday Security Update Review
2023-02-15 00:56:48
rapid7blog
rapid7blog
Patch Tuesday - February 2023
2023-02-15 00:41:59
JSON
Related for SMB_NT_MS23_FEB_OFFICE_SHAREPOINT_SUBSCR_LANGUAGE.NASL
prion1openvas3cvelist1attackerkb1nessus11mskb12githubexploit2cve1mscve1cnvd1avleonov2kaspersky1krebs1malwarebytes1talosblog1qualysblog1rapid7blog1