Lucene search
K

Microsoft Windows Multiple Vulnerabilities (KB5008212)

🗓️ 15 Dec 2021 00:00:00Reported by Copyright (C) 2021 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 29 Views

Microsoft Windows Multiple Vulnerabilities (KB5008212

Related
Refs
Code
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for CVE-2022-26809
26 Dec 202210:36
githubexploit
GithubExploit
Exploit for CVE-2022-26809
26 Dec 202210:36
githubexploit
GithubExploit
Exploit for CVE-2022-26809
1 May 202213:19
githubexploit
GithubExploit
Exploit for CVE-2021-43224
21 Dec 202101:51
githubexploit
GithubExploit
Exploit for CVE-2021-43229
7 Jun 202213:32
githubexploit
ICS
North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime’s Military and Nuclear Programs
25 Jul 202412:00
ics
ATTACKERKB
CVE-2021-43244
15 Dec 202115:15
attackerkb
ATTACKERKB
CVE-2021-36942
12 Aug 202100:00
attackerkb
ATTACKERKB
CVE-2021-43248
15 Dec 202115:15
attackerkb
ATTACKERKB
CVE-2021-43238
15 Dec 202115:15
attackerkb
Rows per page
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.818924");
  script_version("2025-12-19T15:41:09+0000");
  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2021-41333", "CVE-2021-43207", "CVE-2021-43215", "CVE-2021-43216",
                "CVE-2021-43217", "CVE-2021-43219", "CVE-2021-43222", "CVE-2021-43223",
                "CVE-2021-43224", "CVE-2021-43226", "CVE-2021-43227", "CVE-2021-43228",
                "CVE-2021-43229", "CVE-2021-43230", "CVE-2021-43231", "CVE-2021-43232",
                "CVE-2021-43233", "CVE-2021-43234", "CVE-2021-43235", "CVE-2021-43236",
                "CVE-2021-43237", "CVE-2021-43238", "CVE-2021-43239", "CVE-2021-43240",
                "CVE-2021-43244", "CVE-2021-43246", "CVE-2021-43247", "CVE-2021-43248",
                "CVE-2021-43883", "CVE-2021-43893");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"last_modification", value:"2025-12-19 15:41:09 +0000 (Fri, 19 Dec 2025)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2021-12-22 15:14:00 +0000 (Wed, 22 Dec 2021)");
  script_tag(name:"creation_date", value:"2021-12-15 15:57:04 +0530 (Wed, 15 Dec 2021)");
  script_name("Microsoft Windows Multiple Vulnerabilities (KB5008212)");

  script_tag(name:"summary", value:"This host is missing a critical security
  update according to Microsoft KB5008212");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present
  on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to:

  - An elevation of privilege vulnerability in Windows Encrypting File System (EFS).

  - An RCE vulnerability in Windows Encrypting File System (EFS).

  - A memory corruption vulnerability in iSNS Server.

  Please see the references for more information about the vulnerabilities.");

  script_tag(name:"impact", value:"Successful exploitation will allow an attacker
  to elevate privileges, disclose sensitive information and conduct
  remote code execution.");

  script_tag(name:"affected", value:"- Microsoft Windows 10 Version 2004 for 32-bit Systems

  - Microsoft Windows 10 Version 2004 for x64-based Systems");

  script_tag(name:"solution", value:"The vendor has released updates. Please see
  the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"executable_version");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/5008212");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2021 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");
  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(hotfix_check_sp(win10:1, win10x64:1) <= 0){
  exit(0);
}

dllPath = smb_get_system32root();
if(!dllPath ){
  exit(0);
}

fileVer = fetch_file_version(sysPath:dllPath, file_name:"kerberos.dll");
if(!fileVer){
  exit(0);
}

if(version_in_range(version:fileVer, test_version:"10.0.19041.0", test_version2:"10.0.19041.1386"))
{
  report = report_fixed_ver(file_checked:dllPath + "\Kerberos.dll",
                            file_version:fileVer, vulnerable_range:"10.0.19041.0 - 10.0.19041.1386");
  security_message(data:report);
  exit(0);
}
exit(99);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation