Test ID:	1.3.6.1.4.1.25623.1.0.832817
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Multiple Vulnerabilities (KB5034766)
Summary:	This host is missing an important security; update according to Microsoft KB5034766
Description:	Summary: This host is missing an important security update according to Microsoft KB5034766 Vulnerability Insight: Multiple flaws exist due to, - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. - Internet Shortcut Files Security Feature Bypass Vulnerability. - Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, bypass security feature, disclose information, conduct spoofing and denial of service attacks on an affected system. Affected Software/OS: Microsoft Windows 11 version 21H2 for x64-based Systems. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-21420 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21420 Common Vulnerability Exposure (CVE) ID: CVE-2024-21412 Internet Shortcut Files Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21412 Common Vulnerability Exposure (CVE) ID: CVE-2024-21406 Windows Printing Service Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406 Common Vulnerability Exposure (CVE) ID: CVE-2024-21377 Windows DNS Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21377 Common Vulnerability Exposure (CVE) ID: CVE-2024-21375 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21375 Common Vulnerability Exposure (CVE) ID: CVE-2024-21371 Windows Kernel Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21371 Common Vulnerability Exposure (CVE) ID: CVE-2024-21370 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370 Common Vulnerability Exposure (CVE) ID: CVE-2024-21368 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21368 Common Vulnerability Exposure (CVE) ID: CVE-2024-21366 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21366 Common Vulnerability Exposure (CVE) ID: CVE-2024-21365 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21365 Common Vulnerability Exposure (CVE) ID: CVE-2024-21362 Windows Kernel Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21362 Common Vulnerability Exposure (CVE) ID: CVE-2024-21361 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21361 Common Vulnerability Exposure (CVE) ID: CVE-2024-21360 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21360 Common Vulnerability Exposure (CVE) ID: CVE-2024-21359 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21359 Common Vulnerability Exposure (CVE) ID: CVE-2024-21358 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21358 Common Vulnerability Exposure (CVE) ID: CVE-2024-21357 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21357 Common Vulnerability Exposure (CVE) ID: CVE-2024-21356 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21356 Common Vulnerability Exposure (CVE) ID: CVE-2024-21355 Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21355 Common Vulnerability Exposure (CVE) ID: CVE-2024-21354 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21354 Common Vulnerability Exposure (CVE) ID: CVE-2024-21352 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21352 Common Vulnerability Exposure (CVE) ID: CVE-2024-21351 Windows SmartScreen Security Feature Bypass Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21351 Common Vulnerability Exposure (CVE) ID: CVE-2024-21350 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21350 Common Vulnerability Exposure (CVE) ID: CVE-2024-21349 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21349 Common Vulnerability Exposure (CVE) ID: CVE-2024-21348 Internet Connection Sharing (ICS) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21348 Common Vulnerability Exposure (CVE) ID: CVE-2024-21347 Microsoft ODBC Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21347 Common Vulnerability Exposure (CVE) ID: CVE-2024-21340 Windows Kernel Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21340 Common Vulnerability Exposure (CVE) ID: CVE-2024-21339 Windows USB Generic Parent Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21339 Common Vulnerability Exposure (CVE) ID: CVE-2024-20684 Windows Hyper-V Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-20684 Common Vulnerability Exposure (CVE) ID: CVE-2024-21304 Trusted Compute Base Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21304 Common Vulnerability Exposure (CVE) ID: CVE-2024-21405 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405 Common Vulnerability Exposure (CVE) ID: CVE-2024-21391 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391 Common Vulnerability Exposure (CVE) ID: CVE-2024-21372 Windows OLE Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21372 Common Vulnerability Exposure (CVE) ID: CVE-2024-21369 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21369 Common Vulnerability Exposure (CVE) ID: CVE-2024-21367 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21367 Common Vulnerability Exposure (CVE) ID: CVE-2024-21363 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21363 Common Vulnerability Exposure (CVE) ID: CVE-2024-21346 Win32k Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21346 Common Vulnerability Exposure (CVE) ID: CVE-2024-21344 Windows Network Address Translation (NAT) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21344 Common Vulnerability Exposure (CVE) ID: CVE-2024-21343 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21343 Common Vulnerability Exposure (CVE) ID: CVE-2024-21341 Windows Kernel Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21341 Common Vulnerability Exposure (CVE) ID: CVE-2024-21338 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21338 https://decoded.avast.io/janvojtesek/lazarus-and-the-fudmodule-rootkit-beyond-byovd-with-an-admin-to-kernel-zero-day/
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.