Huawei : Huawei Data Communication: RCE Vulnerability in Microsoft Windows Print Spooler Service (huawei-sa-20171222-01-windows)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.108790

Kategorie: Huawei

Titel: Huawei Data Communication: RCE Vulnerability in Microsoft Windows Print Spooler Service (huawei-sa-20171222-01-windows)

Zusammenfassung: Microsoft released a security bulletin MS10-061 to publicly; disclose a remote code execution (RCE) vulnerability in the Print Spooler service.;; This VT has been deprecated and is therefore no longer functional.

Beschreibung: Summary:
Microsoft released a security bulletin MS10-061 to publicly
disclose a remote code execution (RCE) vulnerability in the Print Spooler service.

This VT has been deprecated and is therefore no longer functional.

Vulnerability Insight:
Microsoft released a security bulletin MS10-061 to publicly disclose a remote code execution vulnerability in the Print Spooler service. The vulnerability could allow remote code execution if an attacker sends a specially crafted print request to a vulnerable system. (Vulnerability ID: HWPSIRT-2017-05163)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2010-2729.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references.

Vulnerability Impact:
Successful exploit may result in remote code execution.

Affected Software/OS:
AnyOffice versions V200R002C10 V200R002C20 V200R005C02

SMC2.0 versions V100R003C10 V100R005C00 V500R002C00

Secospace AntiDDoS8000 versions V100R001C00 V500R001C00 V500R001C20 V500R001C60 V500R001C80

Secospace AntiDDoS8160 versions V100R001C00SPC300

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2010-2729
Microsoft Security Bulletin: MS10-061
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-061
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7358

Copyright Copyright (C) 2020 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.108790
Kategorie:	Huawei
Titel:	Huawei Data Communication: RCE Vulnerability in Microsoft Windows Print Spooler Service (huawei-sa-20171222-01-windows)
Zusammenfassung:	Microsoft released a security bulletin MS10-061 to publicly; disclose a remote code execution (RCE) vulnerability in the Print Spooler service.;; This VT has been deprecated and is therefore no longer functional.
Beschreibung:	Summary: Microsoft released a security bulletin MS10-061 to publicly disclose a remote code execution (RCE) vulnerability in the Print Spooler service. This VT has been deprecated and is therefore no longer functional. Vulnerability Insight: Microsoft released a security bulletin MS10-061 to publicly disclose a remote code execution vulnerability in the Print Spooler service. The vulnerability could allow remote code execution if an attacker sends a specially crafted print request to a vulnerable system. (Vulnerability ID: HWPSIRT-2017-05163)This vulnerability has been assigned a Common Vulnerabilities and Exposures (CVE) ID: CVE-2010-2729.Huawei has released software updates to fix this vulnerability. This advisory is available in the linked references. Vulnerability Impact: Successful exploit may result in remote code execution. Affected Software/OS: AnyOffice versions V200R002C10 V200R002C20 V200R005C02 SMC2.0 versions V100R003C10 V100R005C00 V500R002C00 Secospace AntiDDoS8000 versions V100R001C00 V500R001C00 V500R001C20 V500R001C60 V500R001C80 Secospace AntiDDoS8160 versions V100R001C00SPC300 Solution: See the referenced vendor advisory for a solution. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2729 Microsoft Security Bulletin: MS10-061 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2010/ms10-061 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7358
Copyright	Copyright (C) 2020 Greenbone AG