Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Microsoft .NET Framework Multiple Vulnerabilities (KB5029653)

🗓️ 10 Aug 2023 00:00:00Reported by Copyright (C) 2023 Greenbone AGType 
openvas
 openvas🔗 plugins.openvas.org👁 23 Views

This host is missing an important security update for Microsoft .NET Framework Multiple Vulnerabilities (KB5029653). Multiple flaws exist due to ASP.NET Elevation of Privilege Vulnerability and .NET Framework Spoofing Vulnerability

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
Microsoft KB		August 8, 2023-KB5029647 Cumulative Update for .NET Framework 3.5, 4.7.2 and 4.8 for Windows 10, version 1809 and Windows Server 2019
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-Security and Quality Rollup for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB5029652)
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-Security and Quality Rollup for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 7 Standard and Windows Server 2008 R2 SP1 (KB5029651)
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-KB5029648 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 21H2
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-KB5029649 Cumulative Update for .NET Framework 3.5, 4.8 and 4.8.1 for Windows 10 Version 22H2
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-Security Only Update for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 (KB5029567)
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-KB5028952 Cumulative Update for .NET Framework 4.8 for Windows 10, version 1607 and Windows Server 2016
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-KB5028948 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Windows 11, version 22H2
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-Security Only Update for .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Server 2012 R2 (KB5029568)
8 Aug 202307:00
–mskb
Microsoft KB		August 8, 2023-Security Only Update for .NET Framework 3.5.1, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Windows Embedded 7 Standard and Windows Server 2008 R2 SP1 (KB5029566)
8 Aug 202307:00
–mskb
Rows per page
# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.832247");
  script_version("2023-10-13T05:06:10+0000");
  script_cve_id("CVE-2023-36899", "CVE-2023-36873");
  script_tag(name:"cvss_base", value:"9.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:S/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-10-13 05:06:10 +0000 (Fri, 13 Oct 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-08-11 17:56:00 +0000 (Fri, 11 Aug 2023)");
  script_tag(name:"creation_date", value:"2023-08-10 11:13:25 +0530 (Thu, 10 Aug 2023)");
  script_name("Microsoft .NET Framework Multiple Vulnerabilities (KB5029653)");

  script_tag(name:"summary", value:"This host is missing an important security
  update according to Microsoft KB5029653");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");

  script_tag(name:"insight", value:"Multiple flaws exist due to,

  - ASP.NET Elevation of Privilege Vulnerability.

  - .NET Framework Spoofing Vulnerability.

  For more information about the vulnerabilities refer to Reference links.");

  script_tag(name:"impact", value:"Successful exploitation will allow an attacker
  to conduct privilege escalation or spoofing on an affected system.");

  script_tag(name:"affected", value:"Microsoft .NET Framework 3.5, 4.6.2, 4.7, 4.7.1, 4.7.2, 4.8 for Microsoft Windows Server 2012 R2.");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"executable_version");
  script_xref(name:"URL", value:"https://support.microsoft.com/en-us/help/5029653");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");
  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");


if(hotfix_check_sp(win2012R2:1) <= 0) {
  exit(0);
}

if(!registry_key_exists(key:"SOFTWARE\Microsoft\.NETFramework")) {
  if(!registry_key_exists(key:"SOFTWARE\Microsoft\ASP.NET")) {
    if(!registry_key_exists(key:"SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\")) {
      exit(0);
    }
  }
}

key_list = make_list("SOFTWARE\Microsoft\.NETFramework\", "SOFTWARE\Microsoft\ASP.NET\", "SOFTWARE\Microsoft\NET Framework Setup\NDP\v4\Full\");

foreach key(key_list) {
  if(".NETFramework" >< key) {
    foreach item (registry_enum_keys(key:key)) {
      NetPath = registry_get_sz(key:key, item:"InstallRoot");
      if(NetPath && "\Microsoft.NET\Framework" >< NetPath) {
        foreach item (registry_enum_keys(key:key)) {
          dotPath = NetPath + item;
          dllVer = fetch_file_version(sysPath:dotPath, file_name:"Mscorlib.dll");

          if(dllVer) {
            if(version_in_range(version:dllVer, test_version:"2.0.50727.5700", test_version2:"2.0.50727.8973")) {
              VULN = TRUE ;
              vulnerable_range = "2.0.50727.5700 - 2.0.50727.8973";
              break;
            }
            else if(version_in_range(version:dllVer, test_version:"4.7", test_version2:"4.7.4050.0")) {
              VULN = TRUE ;
              vulnerable_range = "4.7 - 4.7.4050.0" ;
              break;
            }

            else if(version_in_range(version:dllVer, test_version:"4.8", test_version2:"4.8.4644.0")) {
              VULN = TRUE ;
              vulnerable_range = "4.8 - 4.8.4644.0" ;
              break;
            }
          }
        }
        if(vulnerable_range){
          break;
        }
      }
    }

  }

  if((!vulnerable_range) && "ASP.NET" >< key) {
    foreach item (registry_enum_keys(key:key)){
      dotPath = registry_get_sz(key:key, item:"Path");
      if(dotPath && "\Microsoft.NET\Framework" >< dotPath) {
        dllVer = fetch_file_version(sysPath:dotPath, file_name:"Mscorlib.dll");

        if(dllVer) {
          if(version_in_range(version:dllVer, test_version:"2.0.50727.5700", test_version2:"2.0.50727.8973")) {
            VULN = TRUE ;
            vulnerable_range = "2.0.50727.5700 - 2.0.50727.8973";
            break;
          }
          else if(version_in_range(version:dllVer, test_version:"4.7", test_version2:"4.7.4050.0")) {
            VULN = TRUE ;
            vulnerable_range = "4.7 - 4.7.4050.0" ;
            break;
          }
          else if(version_in_range(version:dllVer, test_version:"4.8", test_version2:"4.8.4644")) {
            VULN = TRUE ;
            vulnerable_range = "4.8 - 4.8.4644" ;
            break;
          }
        }
      }
    }
  }

  ## For versions greater than 4.5 (https://docs.microsoft.com/en-us/dotnet/framework/migration-guide/how-to-determine-which-versions-are-installed#net_b)
  if((!vulnerable_range) && "NET Framework Setup" >< key) {
    dotPath = registry_get_sz(key:key, item:"InstallPath");
    if(dotPath && "\Microsoft.NET\Framework" >< dotPath) {
      dllVer = fetch_file_version(sysPath:dotPath, file_name:"Mscorlib.dll");

      if(dllVer) {
        if(version_in_range(version:dllVer, test_version:"2.0.50727.5700", test_version2:"2.0.50727.8973")) {
          VULN = TRUE ;
          vulnerable_range = "2.0.50727.5700 - 2.0.50727.8973";
          break;
        }
        else if(version_in_range(version:dllVer, test_version:"4.7", test_version2:"4.7.4050.0")) {
          VULN = TRUE ;
          vulnerable_range = "4.7 - 4.7.4050.0" ;
          break;
        }

        else if(version_in_range(version:dllVer, test_version:"4.8", test_version2:"4.8.4644")) {
          VULN = TRUE ;
          vulnerable_range = "4.8 - 4.8.4644" ;
          break;
        }
      }
    }
  }

  if(VULN) {
    report = report_fixed_ver(file_checked:dotPath + "\mscorlib.dll",
                              file_version:dllVer, vulnerable_range:vulnerable_range);
    security_message(data:report);
    exit(0);
  }
}
exit(99);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
10 Aug 2023 00:00Current
8.6High risk
Vulners AI Score8.6
CVSS38.8
EPSS0.002
SSVC
microsoft .net frameworkmultiple vulnerabilitieskb5029653elevation of privilegespoofingmicrosoft windows server 2012 r2
23
.json
Report