Lucene search

Microsoft Windows Multiple Vulnerabilities (KB4532691)

Microsoft Windows Multiple Vulnerabilities (KB4532691) missing critical security update, leading to multiple flaws including Remote Desktop, Windows Data Sharing Service, RDP, and Microsoft Edge vulnerabilities

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
Microsoft KB	February 11, 2020—KB4537762 (OS Build 17134.1304)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537794 (Security-only update)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537789 (OS Build 16299.1686)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4532693 (OS Builds 18362.657 and 18363.657) - EXPIRED	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537821 (Monthly Rollup)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537814 (Monthly Rollup)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537776 (OS Build 10240.18486)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4532691 (OS Build 17763.1039)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537813 (Security-only update)	11 Feb 202008:00	–	mskb
Microsoft KB	February 11, 2020—KB4537820 (Monthly Rollup)	11 Feb 202008:00	–	mskb

Source	Link
cisa	www.cisa.gov/known-exploited-vulnerabilities-catalog
support	www.support.microsoft.com/en-us/help/4532691

# SPDX-FileCopyrightText: 2020 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.816561");
  script_version("2024-06-26T05:05:39+0000");
  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2018-8267", "CVE-2020-0655", "CVE-2020-0657", "CVE-2020-0658",
                "CVE-2020-0659", "CVE-2020-0660", "CVE-2020-0661", "CVE-2020-0662",
                "CVE-2020-0663", "CVE-2020-0665", "CVE-2020-0666", "CVE-2020-0667",
                "CVE-2020-0668", "CVE-2020-0669", "CVE-2020-0670", "CVE-2020-0671",
                "CVE-2020-0672", "CVE-2020-0673", "CVE-2020-0674", "CVE-2020-0675",
                "CVE-2020-0676", "CVE-2020-0677", "CVE-2020-0678", "CVE-2020-0679",
                "CVE-2020-0680", "CVE-2020-0681", "CVE-2020-0682", "CVE-2020-0683",
                "CVE-2020-0685", "CVE-2020-0686", "CVE-2020-0691", "CVE-2020-0698",
                "CVE-2020-0701", "CVE-2020-0703", "CVE-2020-0704", "CVE-2020-0705",
                "CVE-2020-0706", "CVE-2020-0707", "CVE-2020-0708", "CVE-2020-0710",
                "CVE-2020-0711", "CVE-2020-0712", "CVE-2020-0713", "CVE-2020-0714",
                "CVE-2020-0715", "CVE-2020-0717", "CVE-2020-0719", "CVE-2020-0720",
                "CVE-2020-0721", "CVE-2020-0722", "CVE-2020-0723", "CVE-2020-0724",
                "CVE-2020-0725", "CVE-2020-0726", "CVE-2020-0727", "CVE-2020-0728",
                "CVE-2020-0729", "CVE-2020-0730", "CVE-2020-0731", "CVE-2020-0734",
                "CVE-2020-0735", "CVE-2020-0737", "CVE-2020-0738", "CVE-2020-0739",
                "CVE-2020-0740", "CVE-2020-0741", "CVE-2020-0742", "CVE-2020-0743",
                "CVE-2020-0744", "CVE-2020-0745", "CVE-2020-0746", "CVE-2020-0747",
                "CVE-2020-0748", "CVE-2020-0749", "CVE-2020-0750", "CVE-2020-0752",
                "CVE-2020-0753", "CVE-2020-0754", "CVE-2020-0755", "CVE-2020-0756",
                "CVE-2020-0757", "CVE-2020-0767", "CVE-2020-0817", "CVE-2020-0818");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2024-06-26 05:05:39 +0000 (Wed, 26 Jun 2024)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-02-13 18:11:00 +0000 (Thu, 13 Feb 2020)");
  script_tag(name:"creation_date", value:"2020-02-12 09:33:17 +0530 (Wed, 12 Feb 2020)");
  script_name("Microsoft Windows Multiple Vulnerabilities (KB4532691)");

  script_tag(name:"summary", value:"This host is missing a critical security
  update according to Microsoft KB4532691");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to:

  - An error in Remote Desktop Services formerly known as Terminal Services,
    when an authenticated attacker abuses clipboard redirection.

  - Multiple errors in the Windows Common Log File System (CLFS) driver which improperly
    handles objects in memory.

  - An error in the Windows Data Sharing Service which improperly handles file operations.

  - An error in Remote Desktop Protocol (RDP) when an attacker connects to the target
    system using RDP and sends specially crafted requests.

  - An error in the way that Windows handles objects in memory.

  - An error when Microsoft Edge does not properly enforce cross-domain policies.

  Please see the references for more information about the vulnerabilities.");

  script_tag(name:"impact", value:"Successful exploitation will allow an attacker
  to execute arbitrary code, elevate privileges, disclose sensitive information and
  conduct denial of service attacks.");

  script_tag(name:"affected", value:"- Microsoft Windows 10 Version 1809 for 32-bit Systems

  - Microsoft Windows 10 Version 1809 for x64-based Systems

  - Microsoft Windows Server 2019");

  script_tag(name:"solution", value:"The vendor has released updates. Please see
  the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"executable_version");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/4532691");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");
  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(hotfix_check_sp(win10:1, win10x64:1, win2019:1) <= 0){
  exit(0);
}

sysPath = smb_get_system32root();
if(!sysPath)
  exit(0);

dllVer = fetch_file_version(sysPath:sysPath, file_name:"User32.dll");
if(!dllVer)
  exit(0);

if(version_in_range(version:dllVer, test_version:"10.0.17763.0", test_version2:"10.0.17763.1038")) {
  report = report_fixed_ver(file_checked:sysPath + "\User32.dll",
                            file_version:dllVer, vulnerable_range:"10.0.17763.0 - 10.0.17763.1038");
  security_message(data:report);
  exit(0);
}

exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

12 Feb 2020 00:00Current

7.2High risk

Vulners AI Score7.2

CVSS29.3

CVSS38.8

EPSS0.93744