Lucene search
Copyright (C) 2013 Greenbone Networks GmbHOPENVAS:1361412562310902945HistoryFeb 13, 2013 - 12:00 a.m.
Microsoft Windows TCP/IP Denial of Service Vulnerability (2790655)
2013-02-1300:00:00
Copyright (C) 2013 Greenbone Networks GmbH
plugins.openvas.org
12
6.5 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.875 High
EPSS
Percentile
98.6%
This host is missing an important security update according to
Microsoft Bulletin MS13-018.
# Copyright (C) 2013 Greenbone Networks GmbH
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.902945");
script_version("2022-05-25T07:40:23+0000");
script_cve_id("CVE-2013-0075");
script_tag(name:"cvss_base", value:"7.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_tag(name:"last_modification", value:"2022-05-25 07:40:23 +0000 (Wed, 25 May 2022)");
script_tag(name:"creation_date", value:"2013-02-13 07:22:00 +0530 (Wed, 13 Feb 2013)");
script_name("Microsoft Windows TCP/IP Denial of Service Vulnerability (2790655)");
script_xref(name:"URL", value:"http://support.microsoft.com/kb/2790655");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/57858");
script_xref(name:"URL", value:"http://www.securitytracker.com/id/1028128");
script_xref(name:"URL", value:"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-018");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2013 Greenbone Networks GmbH");
script_family("Windows : Microsoft Bulletins");
script_dependencies("smb_reg_service_pack.nasl");
script_require_ports(139, 445);
script_mandatory_keys("SMB/WindowsVersion");
script_tag(name:"impact", value:"Successful exploitation could allow attackers to exhaust the non-paged pool
and render the system unusable or trigger a restart.");
script_tag(name:"affected", value:"- Microsoft Windows 7 x32/x64 Edition Service Pack 1 and prior
- Microsoft Windows Vista x32/x64 Edition Service Pack 2 and prior
- Microsoft Windows Server 2008 R2 x64 Edition Service Pack 1 and prior
- Microsoft Windows Server 2008 x32/x64 Edition Service Pack 2 and prior");
script_tag(name:"insight", value:"The flaw is due to an error within the TCP/IP stack, which remains in
TCP FIN_WAIT_2 state after receiving an ACK to the FIN packet when
handling a tear down sequence.");
script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");
script_tag(name:"summary", value:"This host is missing an important security update according to
Microsoft Bulletin MS13-018.");
script_tag(name:"qod_type", value:"executable_version");
script_tag(name:"solution_type", value:"VendorFix");
exit(0);
}
include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");
if(hotfix_check_sp(winVista:3, win7:2, win7x64:2, win2008:3, win2008r2:2) <= 0){
exit(0);
}
sysPath = smb_get_systemroot();
if(!sysPath ){
exit(0);
}
sysVer = fetch_file_version(sysPath:sysPath, file_name:"system32\drivers\tcpip.sys");
if(!sysVer){
exit(0);
}
if(hotfix_check_sp(winVista:3, win2008:3) > 0)
{
if(version_is_less(version:sysVer, test_version:"6.0.6002.18764") ||
version_in_range(version:sysVer, test_version:"6.0.6002.22000", test_version2:"6.0.6002.23012")){
security_message( port: 0, data: "The target host was found to be vulnerable" );
}
exit(0);
}
else if(hotfix_check_sp(win7:2, win7x64:2, win2008r2:2) > 0)
{
if(version_is_less(version:sysVer, test_version:"6.1.7600.17206") ||
version_in_range(version:sysVer, test_version:"6.1.7600.20000", test_version2:"6.1.7600.21414")||
version_in_range(version:sysVer, test_version:"6.1.7601.17000", test_version2:"6.1.7601.18041")||
version_in_range(version:sysVer, test_version:"6.1.7601.21000", test_version2:"6.1.7601.22208")){
security_message( port: 0, data: "The target host was found to be vulnerable" );
}
}
Related
cve
cve
CVE-2013-0075
2013-02-13 12:04:00
openvas
openvas
Microsoft Windows TCP/IP Denial of Service Vulnerability (2790655)
2013-02-13 00:00:00
prion
prion
Code injection
2013-02-13 12:04:00
symantec
symantec
nessus
nessus
MS13-018: Vulnerability in TCP/IP Could Allow Denial of Service (2790655)
2013-02-12 00:00:00
ibm
ibm
securityvulns
securityvulns
Microsoft Windows multiple security vulnerabilities
2013-03-02 00:00:00
6.5 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.875 High
EPSS
Percentile
98.6%
Related for OPENVAS:1361412562310902945