Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310806190
HistoryJan 13, 2016 - 12:00 a.m.

Microsoft Visio Remote Code Execution Vulnerability (3124585)

2016-01-1300:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
33

4.8 Medium

AI Score

Confidence

High

0.153 Low

EPSS

Percentile

95.9%

JSON

This host is missing a critical security
update according to Microsoft Bulletin MS16-004

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.806190");
  script_version("2023-07-20T05:05:17+0000");
  script_cve_id("CVE-2016-0012");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:N/A:N");
  script_tag(name:"last_modification", value:"2023-07-20 05:05:17 +0000 (Thu, 20 Jul 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2018-10-12 22:10:00 +0000 (Fri, 12 Oct 2018)");
  script_tag(name:"creation_date", value:"2016-01-13 11:57:20 +0530 (Wed, 13 Jan 2016)");
  script_tag(name:"qod_type", value:"executable_version");
  script_name("Microsoft Visio Remote Code Execution Vulnerability (3124585)");

  script_tag(name:"summary", value:"This host is missing a critical security
  update according to Microsoft Bulletin MS16-004");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"The Office software improperly handles objects
  in memory while parsing specially crafted Office files.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote
  attackers to run arbitrary code in the context of the current user and to
  perform actions in the security context of the current user.");

  script_tag(name:"affected", value:"- Microsoft Visio 2007

  - Microsoft Visio 2010

  - Microsoft Visio 2013

  - Microsoft Visio 2016");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3114489");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3114402");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3114421");
  script_xref(name:"URL", value:"https://technet.microsoft.com/en-us/library/security/MS16-004");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");

  script_xref(name:"URL", value:"https://technet.microsoft.com/en-us/security/bulletin/ms16-004");
  exit(0);
}


include("smb_nt.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

sysPath = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion" +
                             "\App Paths\visio.exe", item:"Path");
if(!sysPath){
  exit(0);
}

excelVer = fetch_file_version(sysPath:sysPath, file_name:"visio.exe");
if(excelVer =~ "^(12|14|15|16)\..*")
{
  if(excelVer =~ "^12"){
    Vulnerable_range  =  "12 - 12.0.6741.4999";
  }
  else if(excelVer =~ "^14"){
    Vulnerable_range  =  "14 - 14.0.7165.4999";
  }
  else if(excelVer =~ "^15"){
    Vulnerable_range  =  "15 - 15.0.4787.0999";
  }
  else if(excelVer =~ "^16"){
    Vulnerable_range  =  "16 - 16.0.4324.0999";
  }

  if(version_in_range(version:excelVer, test_version:"12.0", test_version2:"12.0.6741.4999") ||
     version_in_range(version:excelVer, test_version:"14.0", test_version2:"14.0.7165.4999") ||
     version_in_range(version:excelVer, test_version:"15.0", test_version2:"15.0.4787.0999") ||
     version_in_range(version:excelVer, test_version:"16.0", test_version2:"16.0.4324.0999"))
  {
    report = 'File checked:  ' + sysPath + 'visio.exe' + '\n' +
             'File version:     ' + excelVer  + '\n' +
             'Vulnerable range: ' + Vulnerable_range + '\n' ;

    security_message(data:report);
    exit(0);
  }
}

Related

openvas 6
prion 1
symantec 1
cve 1
cvelist 1
checkpoint_advisories 1
mskb 1
nessus 1
kaspersky 1
openvas
openvas
Microsoft Office Word Security Bypass Vulnerability (3124585)
2016-01-13 00:00:00
Microsoft Office PowerPoint Remote Code Execution Vulnerability (3124585)
2016-01-13 00:00:00
Microsoft Visual Basic ASLR Bypass Vulnerability (3124585)
2016-01-13 00:00:00
prion
prion
Security feature bypass
2016-01-13 05:59:00
symantec
symantec
Microsoft Office CVE-2016-0012 ASLR Security Bypass Vulnerability
2016-01-12 00:00:00
cve
cve
CVE-2016-0012
2016-01-13 05:59:00
cvelist
cvelist
CVE-2016-0012
2016-01-13 02:00:00
checkpoint_advisories
checkpoint_advisories
MSCOMCTL.OCX Killbit: C74190B6-8589-11d1-B16A-00C0F0283628 (MS12-027; CVE-2012-0158; CVE-2016-0012)
2012-04-10 00:00:00
mskb
mskb
MS16-004: Security Update for Microsoft Office to Address Remote Code Execution: January 12, 2016
2016-01-12 00:00:00
nessus
nessus
MS16-004: Security Update for Microsoft Office to Address Remote Code Execution (3124585)
2016-01-12 00:00:00
kaspersky
kaspersky
KLA10738 Multiple vulnerabilities in Microsoft Office
2016-01-12 00:00:00

4.8 Medium

AI Score

Confidence

High

0.153 Low

EPSS

Percentile

95.9%

JSON
Related for OPENVAS:1361412562310806190
openvas6prion1symantec1cve1cvelist1checkpoint_advisories1mskb1nessus1kaspersky1