Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2002 Michael ScheidellOPENVAS:136141256231010943
HistoryNov 03, 2005 - 12:00 a.m.

Cumulative Patch for Internet Information Services (Q327696)

2005-11-0300:00:00
Copyright (C) 2002 Michael Scheidell
plugins.openvas.org
12

6.3 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.943 High

EPSS

Percentile

99.2%

JSON

Check if the Cumulative Patch for Microsoft IIS (Q327696) is installed.

# SPDX-FileCopyrightText: 2002 Michael Scheidell
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.10943");
  script_version("2023-08-03T05:05:16+0000");
  script_tag(name:"last_modification", value:"2023-08-03 05:05:16 +0000 (Thu, 03 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2002-0147", "CVE-2002-0149",
                "CVE-2002-0150", "CVE-2002-0224",
                "CVE-2002-0869", "CVE-2002-1182",
                "CVE-2002-1180", "CVE-2002-1181");
  script_xref(name:"IAVA", value:"2002-A-0002");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Cumulative Patch for Internet Information Services (Q327696)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2002 Michael Scheidell");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("secpod_reg_enum.nasl");
  script_mandatory_keys("SMB/registry_enumerated");

  script_tag(name:"summary", value:"Check if the Cumulative Patch for Microsoft IIS (Q327696) is installed.");

  script_tag(name:"impact", value:"Ten new vulnerabilities, the most serious of which could enable code of an attacker's choice
  to be run on a server.");

  script_tag(name:"affected", value:"- Microsoft Internet Information Services 4.0

  - Microsoft Internet Information Services 5.0

  - Microsoft Internet Information Services 5.1");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_xref(name:"URL", value:"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-062");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4006");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4474");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4476");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4478");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/4490");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/6069");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/6070");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/6071");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/6072");

  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("secpod_reg.inc");

if ( hotfix_check_iis_installed() <= 0 ) exit(0);
if ( hotfix_check_sp(nt:7, win2k:3, xp:1 ) <= 0 ) exit(0);
if ( hotfix_missing(name:"Q811114") > 0 &&
     hotfix_missing(name:"Q327696") > 0  )
  security_message(port:0);

Related

openvas 4
nessus 4
cert 3
cve 8
securityvulns 3
cisco 1
openvas
openvas
Cumulative Patch for Internet Information Services (Q327696)
2005-11-03 00:00:00
MSDTC denial of service by flooding with nul bytes
2005-11-03 00:00:00
MSDTC denial of service by flooding with nul bytes
2005-11-03 00:00:00
nessus
nessus
MS02-018: Cumulative Patch for Internet Information Services (327696)
2002-04-23 00:00:00
Microsoft IIS ASP ISAPI Filter Multiple Overflows
2002-04-10 00:00:00
MS02-018: Microsoft Windows Distributed Transaction Coordinator (DTC) Malformed Input DoS (319733) (intrusive check)
2002-04-20 00:00:00
cert
cert
Microsoft Internet Information Server (IIS) buffer overflow in server-side includes (SSI) containing long invalid file name
2002-04-10 00:00:00
Microsoft Internet Information Server (IIS) vulnerable to buffer overflow via inaccurate checking of delimiters in HTTP header fields
2002-04-10 00:00:00
Microsoft Internet Information Server (IIS) 4.0, 5.0, and 5.1 buffer overflow in chunked encoding transfer mechanism for ASP
2002-04-10 00:00:00
cve
cve
CVE-2002-0149
2002-04-22 04:00:00
CVE-2002-0150
2002-04-22 04:00:00
CVE-2002-0869
2002-11-12 05:00:00
securityvulns
securityvulns
Advisory CA-2002-09 Multiple Vulnerabilities in Microsoft IIS
2002-04-12 00:00:00
Multiple Remote Vulnerabilities in Microsoft IIS
2002-04-11 00:00:00
Microsoft Internet Information Server 5/5.1 Denial of Service &#40;#NISR31102002&#41;
2002-10-31 00:00:00
cisco
cisco
Microsoft IIS Vulnerabilities in Cisco Products - MS02-018
2002-04-15 18:00:00

6.3 Medium

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.943 High

EPSS

Percentile

99.2%

JSON
Related for OPENVAS:136141256231010943
openvas4nessus4cert3cve8securityvulns3cisco1