NASLDB: MS10-019: Vulnerabilities in Windows Could Allow Remote Code Execution (981210)
General
ID: 45506
Name: MS10-019: Vulnerabilities in Windows Could Allow Remote Code Execution (981210)
Summary: Checks the versions of wintrust.dll and cabview.dll
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: CVSS2#E:U/RL:OF/RC:C
Port: 139
Family: Windows : Microsoft Bulletins
Type: Local
Description
The version of Windows running on the remote host has vulnerabilities
in the Windows Authenticode Signature mechanism. Modifying an
existing signed executable or cabinet file can result in arbitrary
code execution.
A remote attacker could exploit this by tricking a user into executing
or opening a maliciously crafted file, resulting in arbitrary code
execution.
Exploiting
Exploit Available: False
Exploitability Ease: No known exploits are available
Sources
CVE: CVE-2010-0486
OSVDB: –
Bugtraq: 39328
scipID: –
Timeline
Vulnerability Disclosure: 2010/04/13
Patch Release: 2010/04/13
Plugin Release: 2010/04/13
Plugin
Version: 1.17
Filename: smb_nt_ms10-019.nasl
Filesize: 7845 bytes
MD5 Hash: 4d4c6251ea91dafb8d34998cd910a572
Identification: Host/patch_management_checks
Require Keys: SMB/MS_Bulletin_Checks/Possible
Dependencies: "smb_hotfixes.nasl", "ms_bulletin_checks_possible.nasl"
Copyright: This script is Copyright© 2010-2012 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack