Search...

Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)

2015-04-17T00:00:00

ID OPENVAS:1361412562310805451
Type openvas
Reporter Copyright (C) 2015 Greenbone Networks GmbH
Modified 2019-12-20T00:00:00

Description

This host is missing an important security update according to Microsoft advisory (3045755)

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
#
# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)
#
# Authors:
# Rinu Kuriakose &lt;krinu@secpod.com&gt;
#
# Copyright:
# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.805451");
  script_version("2019-12-20T10:24:46+0000");
  script_tag(name:"cvss_base", value:"6.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:S/C:C/I:N/A:N");
  script_tag(name:"last_modification", value:"2019-12-20 10:24:46 +0000 (Fri, 20 Dec 2019)");
  script_tag(name:"creation_date", value:"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)");
  script_name("Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft advisory (3045755)");

  script_tag(name:"vuldetect", value:"Get the vulnerable file version and
  check appropriate update is applied or not.");

  script_tag(name:"insight", value:"An update is available that improves the
  authentication used by the Public Key Cryptography User-to-User (PKU2U)
  security support provider (SSP)");

  script_tag(name:"impact", value:"Successful exploitation will allow attackers
  to break certain authentication scenarios.");

  script_tag(name:"affected", value:"- Microsoft Windows Server 2012 R2

  - Microsoft Windows 8.1 x32/x64 Edition");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_tag(name:"qod_type", value:"executable_version");

  script_xref(name:"URL", value:"http://support.microsoft.com/en-us/kb/3045755");
  script_xref(name:"URL", value:"https://technet.microsoft.com/library/security/3045755");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2015 Greenbone Networks GmbH");
  script_family("Windows");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");

  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

sysPath = smb_get_systemroot();
if(!sysPath ){
  exit(0);
}

dllVer = fetch_file_version(sysPath:sysPath, file_name:"system32\Pku2u.dll");
if(!dllVer){
  exit(0);
}

##For Win 8.1 and win2012R2
if(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) &gt; 0)
{
  if(version_is_less(version:dllVer, test_version:"6.3.9600.17728"))
  {
    security_message( port: 0, data: "The target host was found to be vulnerable" );
    exit(0);
  }
}

JSON Vulners Source

Initial Source

{"id": "OPENVAS:1361412562310805451", "bulletinFamily": "scanner", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "published": "2015-04-17T00:00:00", "modified": "2019-12-20T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "cvelist": [], "type": "openvas", "lastseen": "2020-01-08T14:01:02", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": [], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "b8e5b5b127367c0587ddbbd6b5c7e641c5199cb2b53f0d5062a191ee47e09f4f", "hashmap": [{"hash": "02f39e6e54a4d202046e0c6a555fc4c5", "key": "sourceData"}, {"hash": "55077b59e19cacef07832257b173e666", "key": "title"}, {"hash": "8b94a5050c9d70a61ab81e1185b2b938", "key": "modified"}, {"hash": "aea23489ce3aa9b6406ebb28e0cda430", "key": "naslFamily"}, {"hash": "a118e78194d9260b23b2caad109895f7", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "e6695a6d07d6d88320479ddf417d77d7", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "983df9a24398e2a76ffb46af64549d99", "key": "pluginID"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "bb4f8991828f8beb37c2aeaa02b3d003", "key": "href"}, {"hash": "835e274be13d70262de9ca1eab5cde20", "key": "references"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "id": "OPENVAS:1361412562310805451", "lastseen": "2018-09-10T11:36:42", "modified": "2018-09-07T00:00:00", "naslFamily": "Windows", "objectVersion": "1.3", "pluginID": "1361412562310805451", "published": "2015-04-17T00:00:00", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_microsoft_security_advisory_3045755.nasl 11291 2018-09-07 14:48:41Z mmartin $\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"$Revision: 11291 $\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-07 16:48:41 +0200 (Fri, 07 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\n\n Impact Level: System\");\n\n script_tag(name:\"affected\", value:\"Microsoft Windows Server 2012 R2\n Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"Run Windows Update and update the listed\n hotfixes or download and update mentioned hotfixes in the advisory from the\n link, https://technet.microsoft.com/library/security/3045755\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name:\"URL\", value:\"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"smb_reg_service_pack.nasl\");\n script_require_ports(139, 445);\n script_mandatory_keys(\"SMB/WindowsVersion\");\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n }\n}\n", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2018-09-10T11:36:42"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": [], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "4364dbeeacb1c0d93c74bd06acc37c9cd26966caa659f60186f1b9ff52deabd0", "hashmap": [{"hash": "55077b59e19cacef07832257b173e666", "key": "title"}, {"hash": "aea23489ce3aa9b6406ebb28e0cda430", "key": "naslFamily"}, {"hash": "a118e78194d9260b23b2caad109895f7", "key": "description"}, {"hash": "152149d1175960158381f6b787b8d5d6", "key": "sourceData"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "c546ec5a83c8267a23fb611906cdec7f", "key": "modified"}, {"hash": "e6695a6d07d6d88320479ddf417d77d7", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "983df9a24398e2a76ffb46af64549d99", "key": "pluginID"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "bb4f8991828f8beb37c2aeaa02b3d003", "key": "href"}, {"hash": "835e274be13d70262de9ca1eab5cde20", "key": "references"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "id": "OPENVAS:1361412562310805451", "lastseen": "2018-09-17T13:37:02", "modified": "2018-09-17T00:00:00", "naslFamily": "Windows", "objectVersion": "1.3", "pluginID": "1361412562310805451", "published": "2015-04-17T00:00:00", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_microsoft_security_advisory_3045755.nasl 11423 2018-09-17 07:35:16Z cfischer $\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"$Revision: 11423 $\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-17 09:35:16 +0200 (Mon, 17 Sep 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\");\n\n script_tag(name:\"affected\", value:\"Microsoft Windows Server 2012 R2\n\n Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"Run Windows Update and update the listed\n hotfixes or download and update mentioned hotfixes in the advisory from the\n link, https://technet.microsoft.com/library/security/3045755\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name:\"URL\", value:\"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"smb_reg_service_pack.nasl\");\n script_require_ports(139, 445);\n script_mandatory_keys(\"SMB/WindowsVersion\");\n\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n }\n}\n", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2018-09-17T13:37:02"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": [], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "edition": 6, "enchantments": {"dependencies": {"modified": "2019-05-06T14:35:50", "references": []}, "score": {"modified": "2019-05-06T14:35:50", "value": -0.1, "vector": "NONE"}}, "hash": "7a129d37eddd359ae091fc2338f78ba9ece9f7965edb68dc1b80135b52a70715", "hashmap": [{"hash": "55077b59e19cacef07832257b173e666", "key": "title"}, {"hash": "aea23489ce3aa9b6406ebb28e0cda430", "key": "naslFamily"}, {"hash": "a118e78194d9260b23b2caad109895f7", "key": "description"}, {"hash": "689eee55a2cfec6b833cf779c3e903d1", "key": "sourceData"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "e6695a6d07d6d88320479ddf417d77d7", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "983df9a24398e2a76ffb46af64549d99", "key": "pluginID"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "028078cc329a16c7aadaf0e9df327bfc", "key": "modified"}, {"hash": "bb4f8991828f8beb37c2aeaa02b3d003", "key": "href"}, {"hash": "835e274be13d70262de9ca1eab5cde20", "key": "references"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "id": "OPENVAS:1361412562310805451", "lastseen": "2019-05-06T14:35:50", "modified": "2019-05-03T00:00:00", "naslFamily": "Windows", "objectVersion": "1.3", "pluginID": "1361412562310805451", "published": "2015-04-17T00:00:00", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"2019-05-03T10:54:50+0000\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"2019-05-03 10:54:50 +0000 (Fri, 03 May 2019)\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\");\n\n script_tag(name:\"affected\", value:\"Microsoft Windows Server 2012 R2\n\n Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"The vendor has released updates. Please see the references for more information.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name:\"URL\", value:\"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"smb_reg_service_pack.nasl\");\n script_require_ports(139, 445);\n script_mandatory_keys(\"SMB/WindowsVersion\");\n\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath:sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n }\n}\n", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "type": "openvas", "viewCount": 1}, "differentElements": ["modified", "sourceData"], "edition": 6, "lastseen": "2019-05-06T14:35:50"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": [], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "edition": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "cf82a5b23ddf084db663edaeb1cccd0ea9fc0514a9bd26997ea3345cd83b6752", "hashmap": [{"hash": "55077b59e19cacef07832257b173e666", "key": "title"}, {"hash": "aea23489ce3aa9b6406ebb28e0cda430", "key": "naslFamily"}, {"hash": "a118e78194d9260b23b2caad109895f7", "key": "description"}, {"hash": "5f3622b3cd16cf7004858c3b4be7d450", "key": "sourceData"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "e6695a6d07d6d88320479ddf417d77d7", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "983df9a24398e2a76ffb46af64549d99", "key": "pluginID"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "bb4f8991828f8beb37c2aeaa02b3d003", "key": "href"}, {"hash": "e7c99ea8270f32c4596b63d798cb8592", "key": "modified"}, {"hash": "835e274be13d70262de9ca1eab5cde20", "key": "references"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "id": "OPENVAS:1361412562310805451", "lastseen": "2017-07-02T21:11:37", "modified": "2017-05-16T00:00:00", "naslFamily": "Windows", "objectVersion": "1.3", "pluginID": "1361412562310805451", "published": "2015-04-17T00:00:00", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_microsoft_security_advisory_3045755.nasl 6132 2017-05-16 09:03:39Z teissa $\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"$Revision: 6132 $\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-05-16 11:03:39 +0200 (Tue, 16 May 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\n\n Impact Level: System\");\n\n script_tag(name:\"affected\", value:\"\n Microsoft Windows Server 2012 R2\n Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"Run Windows Update and update the listed\n hotfixes or download and update mentioned hotfixes in the advisory from the\n link, https://technet.microsoft.com/library/security/3045755\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name : \"URL\" , value : \"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name : \"URL\" , value : \"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"secpod_reg_enum.nasl\");\n script_mandatory_keys(\"SMB/WindowsVersion\");\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\n## Variable Initialization\nsysPath = \"\";\ndllVer = \"\";\n\n## Get System Path\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n ## Check for Pku2u.dll version\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message(0);\n exit(0);\n }\n}\n", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:11:37"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": [], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This host is missing an important security\n update according to Microsoft advisory (3045755)", "edition": 4, "enchantments": {"dependencies": {"modified": "2018-10-22T16:40:13", "references": []}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "3dc45a36cf609c00e95ba3b8e113e17ad9007c18f229876205bc14cca739159e", "hashmap": [{"hash": "55077b59e19cacef07832257b173e666", "key": "title"}, {"hash": "aea23489ce3aa9b6406ebb28e0cda430", "key": "naslFamily"}, {"hash": "a118e78194d9260b23b2caad109895f7", "key": "description"}, {"hash": "8be90a922e3fddc17514b9fd17f39e9b", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvelist"}, {"hash": "e6695a6d07d6d88320479ddf417d77d7", "key": "published"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "983df9a24398e2a76ffb46af64549d99", "key": "pluginID"}, {"hash": "d12f2c222dd02f21482c2cf6cfe62b59", "key": "sourceData"}, {"hash": "1e898993712db5cf9f9a110102684025", "key": "reporter"}, {"hash": "bb4f8991828f8beb37c2aeaa02b3d003", "key": "href"}, {"hash": "835e274be13d70262de9ca1eab5cde20", "key": "references"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310805451", "id": "OPENVAS:1361412562310805451", "lastseen": "2018-10-22T16:40:13", "modified": "2018-10-12T00:00:00", "naslFamily": "Windows", "objectVersion": "1.3", "pluginID": "1361412562310805451", "published": "2015-04-17T00:00:00", "references": ["http://support.microsoft.com/en-us/kb/3045755", "https://technet.microsoft.com/library/security/3045755"], "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_microsoft_security_advisory_3045755.nasl 11876 2018-10-12 12:20:01Z cfischer $\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"$Revision: 11876 $\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 14:20:01 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\");\n\n script_tag(name:\"affected\", value:\"Microsoft Windows Server 2012 R2\n\n Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"Run Windows Update and update the listed\n hotfixes or download and update mentioned hotfixes in the advisory from the\n link, https://technet.microsoft.com/library/security/3045755\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name:\"URL\", value:\"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"smb_reg_service_pack.nasl\");\n script_require_ports(139, 445);\n script_mandatory_keys(\"SMB/WindowsVersion\");\n\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath:sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n }\n}\n", "title": "Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 4, "lastseen": "2018-10-22T16:40:13"}], "edition": 7, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "a118e78194d9260b23b2caad109895f7"}, {"key": "href", "hash": "bb4f8991828f8beb37c2aeaa02b3d003"}, {"key": "modified", "hash": "2cf3052c57b5a2f6549656f8fa7b1257"}, {"key": "naslFamily", "hash": "aea23489ce3aa9b6406ebb28e0cda430"}, {"key": "pluginID", "hash": "983df9a24398e2a76ffb46af64549d99"}, {"key": "published", "hash": "e6695a6d07d6d88320479ddf417d77d7"}, {"key": "references", "hash": "835e274be13d70262de9ca1eab5cde20"}, {"key": "reporter", "hash": "1e898993712db5cf9f9a110102684025"}, {"key": "sourceData", "hash": "4de3873cc7665b05c6781dd1cf994f02"}, {"key": "title", "hash": "55077b59e19cacef07832257b173e666"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "bcae77d8cd797edc812fabf8cebad5bb195ed7a681eddf374ad3c9c8f80f8173", "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2020-01-08T14:01:02"}, "score": {"value": -0.1, "vector": "NONE", "modified": "2020-01-08T14:01:02"}, "vulnersScore": -0.1}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\n#\n# Authors:\n# Rinu Kuriakose <krinu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.805451\");\n script_version(\"2019-12-20T10:24:46+0000\");\n script_tag(name:\"cvss_base\", value:\"6.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:S/C:C/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"2019-12-20 10:24:46 +0000 (Fri, 20 Dec 2019)\");\n script_tag(name:\"creation_date\", value:\"2015-04-17 16:49:36 +0530 (Fri, 17 Apr 2015)\");\n script_name(\"Microsoft Update To Improve PKU2U Authentication Security Advisory (3045755)\");\n\n script_tag(name:\"summary\", value:\"This host is missing an important security\n update according to Microsoft advisory (3045755)\");\n\n script_tag(name:\"vuldetect\", value:\"Get the vulnerable file version and\n check appropriate update is applied or not.\");\n\n script_tag(name:\"insight\", value:\"An update is available that improves the\n authentication used by the Public Key Cryptography User-to-User (PKU2U)\n security support provider (SSP)\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation will allow attackers\n to break certain authentication scenarios.\");\n\n script_tag(name:\"affected\", value:\"- Microsoft Windows Server 2012 R2\n\n - Microsoft Windows 8.1 x32/x64 Edition\");\n\n script_tag(name:\"solution\", value:\"The vendor has released updates. Please see the references for more information.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_tag(name:\"qod_type\", value:\"executable_version\");\n\n script_xref(name:\"URL\", value:\"http://support.microsoft.com/en-us/kb/3045755\");\n script_xref(name:\"URL\", value:\"https://technet.microsoft.com/library/security/3045755\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Windows\");\n script_dependencies(\"smb_reg_service_pack.nasl\");\n script_require_ports(139, 445);\n script_mandatory_keys(\"SMB/WindowsVersion\");\n\n exit(0);\n}\n\ninclude(\"smb_nt.inc\");\ninclude(\"secpod_reg.inc\");\ninclude(\"version_func.inc\");\ninclude(\"secpod_smb_func.inc\");\n\nsysPath = smb_get_systemroot();\nif(!sysPath ){\n exit(0);\n}\n\ndllVer = fetch_file_version(sysPath:sysPath, file_name:\"system32\\Pku2u.dll\");\nif(!dllVer){\n exit(0);\n}\n\n##For Win 8.1 and win2012R2\nif(hotfix_check_sp(win8_1:1, win8_1x64:1, win2012R2:1) > 0)\n{\n if(version_is_less(version:dllVer, test_version:\"6.3.9600.17728\"))\n {\n security_message( port: 0, data: \"The target host was found to be vulnerable\" );\n exit(0);\n }\n}\n", "naslFamily": "Windows", "pluginID": "1361412562310805451", "scheme": null}