11 matches found
Dropping Files on a Domain Controller Using CVE-2021-43893
On December 14, 2021, during the Log4Shell chaos, Microsoft published CVE-2021-43893, a remote privilege escalation vulnerability affecting the Windows Encrypted File System EFS. The vulnerability was credited to James Forshaw of Google Project Zero, but perhaps owing to the Log4Shell atmosphere,...
Microsoft Windows Multiple Vulnerabilities (KB5008212)
This host is missing a critical security update according to Microsoft KB5008212 SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
KB5008215: Windows 11 Security Update (December 2021)
The Windows 11 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41333, CVE-2021-43207, CVE-2021-43223, CVE-2021-43226,...
KB5008282: Windows 7 and Windows Server 2008 R2 Security Update (December 2021)
The remote Windows host is missing security update 5008282 or cumulative update 5008244. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-40441, CVE-2021-41333, CVE-2021-43207,...
KB5008230: Windows 10 version 1507 Security Update (December 2021)
The remote Windows host is missing security update 5008230. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-43215, CVE-2021-43217,...
KB5008271: Windows Server 2008 Security Update (December 2021)
The remote Windows host is missing security update 5008271 or cumulative update 5008274. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41333, CVE-2021-43207, CVE-2021-43226,...
KB5008206: Windows 10 Version 1909 Security Update (December 2021)
The remote Windows host is missing security update 5008206. It is, therefore, affected by multiple vulnerabilities: - A denial of service DoS vulnerability. An attacker can exploit this issue to cause the affected component to deny system or application services. CVE-2021-43219, CVE-2021-43228,...
KB5008223: Windows Server 2022 Security Update (December 2021)
The Windows Server 2022 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41333, CVE-2021-43207, CVE-2021-43223,...
KB5008255: Windows Server 2012 Security Update (December 2021)
The remote Windows host is missing security update 5008255 or cumulative update 5008277. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-40441, CVE-2021-41333, CVE-2021-43207,...
KB5008207: Windows 10 Version 1607 and Windows Server 2016 Security Update (December 2021)
The remote Windows host is missing security update 5008207. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-43215, CVE-2021-43217,...
KB5008218: Windows 10 version 1809 / Windows Server 2019 Security Update (December 2021)
The Windows 10 1809 / Windows Server 2019 installation on the remote host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-41333, CVE-2021-43207,...