Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2012 SecPodOPENVAS:1361412562310902676
HistoryMay 09, 2012 - 12:00 a.m.

Microsoft Windows TCP/IP Privilege Elevation Vulnerabilities (2688338)

2012-05-0900:00:00
Copyright (C) 2012 SecPod
plugins.openvas.org
5

0.008 Low

EPSS

Percentile

79.5%

JSON

This host is missing an important security update according to
Microsoft Bulletin MS12-032.

###############################################################################
# OpenVAS Vulnerability Test
#
# Microsoft Windows TCP/IP Privilege Elevation Vulnerabilities (2688338)
#
# Authors:
# Rachana Shetty <[email protected]>
#
# Copyright:
# Copyright (c) 2012 SecPod, http://www.secpod.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.902676");
  script_version("2020-01-07T09:06:32+0000");
  script_cve_id("CVE-2012-0174", "CVE-2012-0179");
  script_bugtraq_id(53352, 53349);
  script_tag(name:"cvss_base", value:"7.2");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2020-01-07 09:06:32 +0000 (Tue, 07 Jan 2020)");
  script_tag(name:"creation_date", value:"2012-05-09 09:08:42 +0530 (Wed, 09 May 2012)");
  script_name("Microsoft Windows TCP/IP Privilege Elevation Vulnerabilities (2688338)");
  script_xref(name:"URL", value:"http://support.microsoft.com/kb/2688338");
  script_xref(name:"URL", value:"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-032");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 SecPod");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("smb_reg_service_pack.nasl");
  script_require_ports(139, 445);
  script_mandatory_keys("SMB/WindowsVersion");

  script_tag(name:"impact", value:"Successful exploitation could allow attackers to bypass certain security
  restrictions and gain escalated privileges.");
  script_tag(name:"affected", value:"- Microsoft Windows 7 Service Pack 1 and prior

  - Microsoft Windows Server 2008 R2 Service Pack 1

  - Microsoft Windows Vista Service Pack 2 and prior

  - Microsoft Windows Server 2008 Service Pack 2 and prior");
  script_tag(name:"insight", value:"The flaws are due to the way,

  - Windows Firewall handles outbound broadcast packets.

  - Windows TCP/IP stack handles the binding of an IPv6 address to a local
    interface.");
  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");
  script_tag(name:"summary", value:"This host is missing an important security update according to
  Microsoft Bulletin MS12-032.");
  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

if(hotfix_check_sp(winVista:3, win7:2, win7x64:2, win2008:3, win2008r2:2) <= 0){
  exit(0);
}

sysPath = smb_get_systemroot();
if(!sysPath ){
  exit(0);
}

sysVer = fetch_file_version(sysPath:sysPath, file_name:"system32\drivers\tcpip.sys");
if(!sysVer){
  exit(0);
}

if(hotfix_check_sp(winVista:3, win2008:3) > 0)
{
  if(version_is_less(version:sysVer, test_version:"6.0.6002.18604") ||
     version_in_range(version:sysVer, test_version:"6.0.6002.22000", test_version2:"6.0.6002.22827")){
      security_message( port: 0, data: "The target host was found to be vulnerable" );
  }
  exit(0);
}

else if(hotfix_check_sp(win7:2, win7x64:2, win2008r2:2) > 0)
{
  if(version_is_less(version:sysVer, test_version:"6.1.7600.16986") ||
     version_in_range(version:sysVer, test_version:"6.1.7600.20000", test_version2:"6.1.7600.21177")||
     version_in_range(version:sysVer, test_version:"6.1.7601.17000", test_version2:"6.1.7601.17801")||
     version_in_range(version:sysVer, test_version:"6.1.7601.21000", test_version2:"6.1.7601.21953")){
    security_message( port: 0, data: "The target host was found to be vulnerable" );
  }
}

Related

openvas 1
nessus 1
prion 2
cve 2
symantec 2
seebug 2
securityvulns 1
openvas
openvas
Microsoft Windows TCP/IP Privilege Elevation Vulnerabilities (2688338)
2012-05-09 00:00:00
nessus
nessus
MS12-032: Vulnerability in TCP/IP Could Allow Elevation of Privilege (2688338)
2012-05-09 00:00:00
prion
prion
Authorization
2012-05-09 00:55:00
Double free
2012-05-09 00:55:00
cve
cve
CVE-2012-0174
2012-05-09 00:55:00
CVE-2012-0179
2012-05-09 00:55:00
symantec
symantec
Microsoft Windows Firewall CVE-2012-0174 Security Bypass Vulnerability
2012-05-08 00:00:00
Microsoft Windows TCP/IP CVE-2012-0179 Local Privilege Escalation Vulnerability
2012-05-08 00:00:00
seebug
seebug
Microsoft Windows Firewall安全限制绕过漏洞(MS12-032)
2012-05-09 00:00:00
Microsoft Windows TCP/IP本地权限提升漏洞(MS12-032)
2012-05-09 00:00:00
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2012-08-13 00:00:00

0.008 Low

EPSS

Percentile

79.5%

JSON
Related for OPENVAS:1361412562310902676
openvas1nessus1prion2cve2symantec2seebug2securityvulns1