Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Microsoft iSCSI Denial of Service Vulnerabilities (2962485)

🗓️ 14 May 2014 00:00:00Reported by Copyright (C) 2014 Greenbone Networks GmbHType 
openvas
 openvas🔗 plugins.openvas.org👁 37 Views

This host is missing an important security update for Microsoft iSCSI Denial of Service Vulnerabilities (2962485). Flaw allows attackers to cause the iSCSI service to stop responding via specially crafted iSCSI packets. Affected systems include Microsoft Windows Server 2012, Microsoft Windows Server 2012 R2, Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior. Update the hotfixes from the provided link

Related
Refs
Code
ReporterTitlePublishedViews
Family
Check Point Advisories		Microsoft Windows iSCSI Target Denial of Service (MS14-028; CVE-2014-0255)
19 May 201400:00
checkpoint_advisories
CVE		CVE-2014-0255
14 May 201410:00
cve
CVE		CVE-2014-0256
14 May 201410:00
cve
Cvelist		CVE-2014-0255
14 May 201410:00
cvelist
Cvelist		CVE-2014-0256
14 May 201410:00
cvelist
Microsoft KB		MS14-028: Vulnerabilities in iSCSI could allow denial of service: May 13, 2014
13 May 201400:00
mskb
Kaspersky		KLA10601 Multiple vulnerabilities in Microsoft products
11 Nov 201400:00
kaspersky
NVD		CVE-2014-0255
14 May 201411:13
nvd
NVD		CVE-2014-0256
14 May 201411:13
nvd
OpenVAS		Microsoft iSCSI Denial of Service Vulnerabilities (2962485)
14 May 201400:00
openvas
Rows per page
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ms14-028.nasl 6769 2017-07-20 09:56:33Z teissa $
#
# Microsoft iSCSI Denial of Service Vulnerabilities (2962485)
#
# Authors:
# Veerendra GG <[email protected]>
#
# Copyright:
# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

if(description)
{
  script_id(802074);
  script_version("$Revision: 6769 $");
  script_cve_id("CVE-2014-0255", "CVE-2014-0256");
  script_bugtraq_id(67280, 67281);
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_tag(name:"last_modification", value:"$Date: 2017-07-20 11:56:33 +0200 (Thu, 20 Jul 2017) $");
  script_tag(name:"creation_date", value:"2014-05-14 17:09:23 +0530 (Wed, 14 May 2014)");
  script_tag(name:"solution_type", value: "VendorFix");
  script_name("Microsoft iSCSI Denial of Service Vulnerabilities (2962485)");

  tag_summary =
"This host is missing an important security update according to Microsoft
Bulletin MS14-028.";

  tag_vuldetect =
"Get the vulnerable file version and check appropriate patch is applied
or not.";

  tag_insight =
"Flaw is due to an error when handling large amounts of specially crafted
iSCSI packets.";

  tag_impact =
"Successful exploitation will allow attackers to cause the iSCSI service to
stop responding via specially crafted iSCSI packets.

Impact Level: Application";

  tag_affected =
"Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior";

  tag_solution =
"Run Windows Update and update the listed hotfixes or download and
update mentioned hotfixes in the advisory from the below link,
https://technet.microsoft.com/library/security/ms14-028";


  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "vuldetect" , value : tag_vuldetect);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name : "impact" , value : tag_impact);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name:"qod_type", value:"registry");

  script_xref(name : "URL" , value : "http://secunia.com/advisories/58281");
  script_xref(name : "URL" , value : "https://support.microsoft.com/kb/2933826");
  script_xref(name : "URL" , value : "https://technet.microsoft.com/library/security/ms14-028");
  script_category(ACT_GATHER_INFO);
  script_family("Windows : Microsoft Bulletins");
  script_copyright("Copyright (C) 2014 Greenbone Networks GmbH");
  script_dependencies("secpod_reg_enum.nasl");
  script_mandatory_keys("SMB/WindowsVersion");
  exit(0);
}

include("smb_nt.inc");
include("secpod_reg.inc");
include("version_func.inc");
include("secpod_smb_func.inc");

## Variables Initialization
sysPath = "";
sysVer = "";

## Check for OS and Service Pack
if(hotfix_check_sp(win2008r2:2, win2012:1, win2012R2:1) <= 0){
  exit(0);
}

## Get System Path
sysPath = smb_get_systemroot();
if(!sysPath){
  exit(0);
}

## Get Version from Iscsitgt.dll file
sysVer = fetch_file_version(sysPath, file_name:"\system32\Iscsitgt.dll");
if(!sysVer){
  exit(0);
}

## Presently given info is not clear on Windows 2008 R2
## TODO: Need to add support for Windows 2008 R2 once required details
## are available

## Windows 2012
if(hotfix_check_sp(win2012:1) > 0)
{
  ## Check for Iscsitgt.dll version
  if(version_in_range(version:sysVer, test_version:"6.2.9200.16000", test_version2:"6.2.9200.16885")||
     version_in_range(version:sysVer, test_version:"6.3.9200.16000", test_version2:"6.3.9600.16659")||
     version_in_range(version:sysVer, test_version:"6.2.9200.21000", test_version2:"6.2.9200.21004")){
    security_message(0);
  }
  exit(0);
}

## Windows 2012R2
if(hotfix_check_sp(win2012R2:1) > 0)
{
  ## Check for Iscsitgt.dll version
  if(version_is_less(version:sysVer, test_version:"6.3.9600.17095")){
   security_message(0);
  }
  exit(0);
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
20 Jul 2017 00:00Current
8.6High risk
Vulners AI Score8.6
EPSS0.36908
microsoft iscsi denial of service vulnerabilitiessecurity updatevulnerableflawattackersiscsi servicespecially crafted packetswindows server 2012windows server 2012 r2windows server 2008 r2hotfix update
37