Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310809444
HistoryOct 12, 2016 - 12:00 a.m.

Microsoft Lync Multiple Vulnerabilities (3192884)

2016-10-1200:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
19

6.6 Medium

AI Score

Confidence

High

0.427 Medium

EPSS

Percentile

97.3%

JSON

This host is missing an important security
update according to Microsoft Bulletin MS16-120.

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.809444");
  script_version("2023-07-21T05:05:22+0000");
  script_cve_id("CVE-2016-3209", "CVE-2016-3262", "CVE-2016-3263", "CVE-2016-3396",
                "CVE-2016-7182");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-07-21 05:05:22 +0000 (Fri, 21 Jul 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2018-10-12 22:14:00 +0000 (Fri, 12 Oct 2018)");
  script_tag(name:"creation_date", value:"2016-10-12 12:47:25 +0530 (Wed, 12 Oct 2016)");
  script_name("Microsoft Lync Multiple Vulnerabilities (3192884)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft Bulletin MS16-120.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to:

  - The Windows Graphics Device Interface (GDI) improperly handles objects
    in memory.

  - The windows font library which improperly handles specially crafted
    embedded fonts.");

  script_tag(name:"impact", value:"Successful exploitation will allow an
  attacker to execute arbitrary code on the affected system and gain
  access to potentially sensitive information.");

  script_tag(name:"affected", value:"- Microsoft Lync 2010

  - Microsoft Lync 2013");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_tag(name:"qod_type", value:"executable_version");

  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/kb/3192884");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93385");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93390");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93394");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93380");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/93395");
  script_xref(name:"URL", value:"https://technet.microsoft.com/library/security/MS16-120");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl", "secpod_ms_lync_detect_win.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("MS/Lync/Installed");

  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(get_kb_item("MS/Lync/Ver"))
{
  lyncPath = get_kb_item("MS/Lync/path");

  ## For MS Lync Basic
  if(!lyncPath){
    lyncPath = get_kb_item("MS/Lync/Basic/path");
  }

  if(lyncPath)
  {
    lyncPath1 = lyncPath + "OFFICE14";
    commVer = fetch_file_version(sysPath:lyncPath1, file_name:"Rtmpltfm.dll");
    if(commVer)
    {
      if(commVer =~ "^4" && version_in_range(version:commVer, test_version:"4.0", test_version2:"4.0.7577.4520"))
      {
        report = 'File checked:     ' + lyncPath1 + "\Rtmpltfm.dll" + '\n' +
                 'File version:     ' + commVer  + '\n' +
                 'Vulnerable range: ' + "4.0 - 4.0.7577.4520" + '\n' ;
        security_message(data:report);
      }
    }

    lyncPath2 = lyncPath + "OFFICE15";
    fileVer = fetch_file_version(sysPath:lyncPath2, file_name:"lynchtmlconv.exe");
    if(fileVer)
    {
      if(version_in_range(version:fileVer, test_version:"15.0", test_version2:"15.0.4867.999"))
      {
        report = 'File checked:     ' + lyncPath2 + "\lynchtmlconv.exe" + '\n' +
                 'File version:     ' + fileVer  + '\n' +
                 'Vulnerable range: ' + "15.0 - 15.0.4867.0999" + '\n' ;
        security_message(data:report);
        exit(0);
      }
    }
  }
}

Related

mskb 34
openvas 7
kaspersky 4
nessus 2
cve 5
cvelist 5
prion 5
checkpoint_advisories 4
symantec 5
mscve 5
mskb
mskb
Security update 2016-10-11
2016-10-11 07:00:00
Security update 2016-10-11
2016-10-11 07:00:00
MS16-120: Description of the security update for Lync 2013 (Skype for Business): October 11, 2016
2016-10-11 07:00:00
openvas
openvas
Microsoft Office Word Viewer Remote Code Execution Vulnerabilities (3192884)
2016-10-12 00:00:00
Microsoft Lync Attendee Multiple Vulnerabilities (3192884)
2016-10-12 00:00:00
Microsoft Office Multiple Remote Code Execution Vulnerabilities (3192884)
2016-10-12 00:00:00
kaspersky
kaspersky
KLA10884 Code execution vulnerability in Microsoft Office
2016-10-11 00:00:00
KLA10883 OSI vulnerability in Microsoft Products
2016-10-11 00:00:00
KLA11906 Multiple vulnerabilities for Microsoft Products (ESU)
2016-10-11 00:00:00
nessus
nessus
MS16-120: Security Update for Microsoft Graphics Component (3192884)
2016-10-12 00:00:00
MS16-120: Security Update for Microsoft Graphics Component (3192884) (macOS)
2016-10-12 00:00:00
cve
cve
CVE-2016-3262
2016-10-14 02:59:00
CVE-2016-3263
2016-10-14 02:59:00
CVE-2016-3396
2016-10-14 02:59:00
cvelist
cvelist
CVE-2016-3262
2016-10-14 01:00:00
CVE-2016-3263
2016-10-14 01:00:00
CVE-2016-3396
2016-10-14 01:00:00
prion
prion
Information disclosure
2016-10-14 02:59:00
Information disclosure
2016-10-14 02:59:00
Remote code execution
2016-10-14 02:59:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3263)
2016-10-11 00:00:00
Microsoft Windows GDI+ Information Disclosure (MS16-120: CVE-2016-3262)
2016-10-11 00:00:00
Microsoft Windows True Type Font Parsing Elevation of Privilege (MS16-120: CVE-2016-7182)
2016-10-11 00:00:00
symantec
symantec
Microsoft Windows Graphics Component CVE-2016-3263 Information Disclosure Vulnerability
2016-10-11 00:00:00
Microsoft Windows Graphics Component CVE-2016-3262 Information Disclosure Vulnerability
2016-10-11 00:00:00
Microsoft Windows Graphics Component CVE-2016-3396 Remote Code Execution Vulnerability
2016-10-11 00:00:00
mscve
mscve
GDI+ Information Disclosure Vulnerability
2016-10-11 07:00:00
GDI+ Remote Code Execution Vulnerability
2016-10-11 07:00:00
GDI+ Information Disclosure Vulnerability
2016-10-11 07:00:00

6.6 Medium

AI Score

Confidence

High

0.427 Medium

EPSS

Percentile

97.3%

JSON
Related for OPENVAS:1361412562310809444
mskb34openvas7kaspersky4nessus2cve5cvelist5prion5checkpoint_advisories4symantec5mscve5