Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2017 Greenbone AGOPENVAS:1361412562310810711
HistoryMar 15, 2017 - 12:00 a.m.

Microsoft Office Compatibility Pack Multiple Vulnerabilities (4013241)

2017-03-1500:00:00
Copyright (C) 2017 Greenbone AG
plugins.openvas.org
22

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.108 Low

EPSS

Percentile

95.0%

JSON

This host is missing an important security
update according to Microsoft Bulletin MS17-014.

# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.810711");
  script_version("2023-07-14T16:09:27+0000");
  script_cve_id("CVE-2017-0006", "CVE-2017-0019");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-07-14 16:09:27 +0000 (Fri, 14 Jul 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2017-07-12 01:29:00 +0000 (Wed, 12 Jul 2017)");
  script_tag(name:"creation_date", value:"2017-03-15 14:08:22 +0530 (Wed, 15 Mar 2017)");
  script_tag(name:"qod_type", value:"executable_version");
  script_name("Microsoft Office Compatibility Pack Multiple Vulnerabilities (4013241)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft Bulletin MS17-014.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist as Microsoft Office
  improperly handles input.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote
  attackers to gain access to potentially sensitive information and run arbitrary
  code in the context of the current user.");

  script_tag(name:"affected", value:"Microsoft Office Compatibility Pack Service Pack 3 and prior.");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/3178682");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/96740");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/96042");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/3178677");
  script_xref(name:"URL", value:"https://technet.microsoft.com/library/security/ms17-014");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2017 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("secpod_office_products_version_900032.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/Office/ComptPack/Version", "SMB/Office/XLCnv/Version");

  exit(0);
}

include("smb_nt.inc");
include("host_details.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

path = registry_get_sz(key:"SOFTWARE\Microsoft\Windows\CurrentVersion", item:"ProgramFilesDir");
if(!path){
  exit(0);
}

cmpPckVer = get_kb_item("SMB/Office/ComptPack/Version");
if(cmpPckVer && cmpPckVer =~ "^12\.")
{
  xlcnvVer = get_kb_item("SMB/Office/XLCnv/Version");
  if(xlcnvVer && xlcnvVer =~ "^12\.")
  {
    offpath = path + "\Microsoft Office\Office12";
    sysVer = fetch_file_version(sysPath:offpath, file_name:"excelcnv.exe");
    if(sysVer && sysVer =~ "^12\.")
    {
      if(version_in_range(version:sysVer, test_version:"12.0", test_version2:"12.0.6765.4999"))
      {
        report = 'File checked:      ' + offpath + "\excelcnv.exe" + '\n' +
                 'File version:      ' + sysVer  + '\n' +
                 'Vulnerable range:  12.0 - 12.0.6765.4999' + '\n' ;
        security_message(data:report);
        exit(0);
      }
    }
  }

  wordcnvVer = get_kb_item("SMB/Office/WordCnv/Version");
  if(wordcnvVer && wordcnvVer =~ "^12\.")
  {
    offpath = path + "\Microsoft Office\Office12";
    {
      sysVer = fetch_file_version(sysPath:offpath, file_name:"Wordcnv.dll");
      if(sysVer && sysVer =~ "^12\.")
      {
        if(version_in_range(version:sysVer, test_version:"12.0", test_version2:"12.0.6765.4999"))
        {
          report = 'File checked:      ' + offpath + "\Wordcnv.dll" + '\n' +
                   'File version:      ' + sysVer  + '\n' +
                   'Vulnerable range:  12.0 - 12.0.6765.4999' + '\n' ;
          security_message(data:report);
          exit(0);
        }
      }
    }
  }
}

Related

checkpoint_advisories 2
mscve 2
symantec 2
prion 7
cve 7
avleonov 1
mskb 6
openvas 4
nessus 1
kaspersky 1
checkpoint_advisories
checkpoint_advisories
Microsoft Office Memory Corruption (MS17-014: CVE-2017-0019)
2017-03-14 00:00:00
Microsoft Office Memory Corruption (MS17-014: CVE-2017-0006)
2017-03-14 00:00:00
mscve
mscve
Microsoft Office Memory Corruption Vulnerability
2017-03-14 07:00:00
Microsoft Office Memory Corruption Vulnerability
2017-03-14 07:00:00
symantec
symantec
Microsoft Office CVE-2017-0019 Memory Corruption Vulnerability
2017-03-14 00:00:00
Microsoft Office CVE-2017-0006 Memory Corruption Vulnerability
2017-03-14 00:00:00
prion
prion
Memory corruption
2017-03-17 00:59:00
Memory corruption
2017-03-17 00:59:00
Memory corruption
2017-03-17 00:59:00
cve
cve
CVE-2017-0019
2017-03-17 00:59:00
CVE-2017-0030
2017-03-17 00:59:00
CVE-2017-0052
2017-03-17 00:59:00
avleonov
avleonov
Downloading and analyzing NVD CVE feed
2017-10-02 23:27:35
mskb
mskb
Security update 2017-03-14
2017-03-14 07:00:00
Security update 2017-03-14
2017-03-14 07:00:00
MS17-014: Description of the security update for Word 2016: March 14, 2017
2017-03-14 07:00:00
openvas
openvas
Microsoft Windows Excel Viewer Memory Corruption Vulnerabilities (4013241)
2017-03-15 00:00:00
MS SharePoint Server Excel Services Multiple Vulnerabilities (4013241)
2017-03-15 00:00:00
Microsoft Office Excel Multiple Vulnerabilities (4013241)
2017-03-15 00:00:00
nessus
nessus
MS17-014: Security Update for Microsoft Office (4013241)
2017-03-15 00:00:00
kaspersky
kaspersky
KLA10981 Multiple vulnerabilities in Microsoft Office
2017-03-14 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.5 High

AI Score

Confidence

High

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.108 Low

EPSS

Percentile

95.0%

JSON
Related for OPENVAS:1361412562310810711
checkpoint_advisories2mscve2symantec2prion7cve7avleonov1mskb6openvas4nessus1kaspersky1