Test ID:	1.3.6.1.4.1.25623.1.0.832825
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Multiple Vulnerabilities (KB5034831)
Summary:	This host is missing an important security; update according to Microsoft KB5034831
Description:	Summary: This host is missing an important security update according to Microsoft KB5034831 Vulnerability Insight: Multiple flaws exist due to, - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. - Windows Printing Service Spoofing Vulnerability. - Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability. For more information about the vulnerabilities refer to Reference links. Vulnerability Impact: Successful exploitation will allow an attacker to elevate privileges, execute arbitrary commands, disclose information, conduct spoofing and denial of service attacks on an affected system. Affected Software/OS: Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2024-21420 Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21420 Common Vulnerability Exposure (CVE) ID: CVE-2024-21406 Windows Printing Service Spoofing Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21406 Common Vulnerability Exposure (CVE) ID: CVE-2024-21375 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21375 Common Vulnerability Exposure (CVE) ID: CVE-2024-21370 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21370 Common Vulnerability Exposure (CVE) ID: CVE-2024-21368 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21368 Common Vulnerability Exposure (CVE) ID: CVE-2024-21366 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21366 Common Vulnerability Exposure (CVE) ID: CVE-2024-21365 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21365 Common Vulnerability Exposure (CVE) ID: CVE-2024-21361 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21361 Common Vulnerability Exposure (CVE) ID: CVE-2024-21360 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21360 Common Vulnerability Exposure (CVE) ID: CVE-2024-21359 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21359 Common Vulnerability Exposure (CVE) ID: CVE-2024-21358 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21358 Common Vulnerability Exposure (CVE) ID: CVE-2024-21357 Windows Pragmatic General Multicast (PGM) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21357 Common Vulnerability Exposure (CVE) ID: CVE-2024-21356 Windows Lightweight Directory Access Protocol (LDAP) Denial of Service Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21356 Common Vulnerability Exposure (CVE) ID: CVE-2024-21355 Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21355 Common Vulnerability Exposure (CVE) ID: CVE-2024-21354 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21354 Common Vulnerability Exposure (CVE) ID: CVE-2024-21352 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21352 Common Vulnerability Exposure (CVE) ID: CVE-2024-21350 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21350 Common Vulnerability Exposure (CVE) ID: CVE-2024-21349 Microsoft ActiveX Data Objects Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21349 Common Vulnerability Exposure (CVE) ID: CVE-2024-21347 Microsoft ODBC Driver Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21347 Common Vulnerability Exposure (CVE) ID: CVE-2024-21340 Windows Kernel Information Disclosure Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21340 Common Vulnerability Exposure (CVE) ID: CVE-2023-50387 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PNNHZSZPG2E7NBMBNYPGHCFI4V4XRWNQ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SVYA42BLXUCIDLD35YIJPJSHDIADNYMP/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/RGS7JN6FZXUSTC2XKQHH27574XOULYYJ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UQESRWMJCF4JEYJEAKLRM6CT55GLJAB7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TEXGOYGW7DBS3N2QSSQONZ4ENIRQEAPG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HVRDSJVZKMCXKKPP6PNR62T7RWZ3YSDZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6FV5O347JTX7P5OZA6NGO4MKTXRXMKOZ/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IGSLGKUAQTW5JPPZCMF5YPEYALLRUZZ6/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BUIP7T7Z4T3UHLXFWG6XIVDP4GYPD3AI/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZDZFMEKQTZ4L7RY46FCENWFB5MDT263R/ https://access.redhat.com/security/cve/CVE-2023-50387 https://bugzilla.suse.com/show_bug.cgi?id=1219823 https://docs.powerdns.com/recursor/security-advisories/powerdns-advisory-2024-01.html https://gitlab.nic.cz/knot/knot-resolver/-/releases/v5.7.1 https://kb.isc.org/docs/cve-2023-50387 https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-50387 https://news.ycombinator.com/item?id=39367411 https://news.ycombinator.com/item?id=39372384 https://nlnetlabs.nl/news/2024/Feb/13/unbound-1.19.1-released/ https://www.athene-center.de/aktuelles/key-trap https://www.athene-center.de/fileadmin/content/PDF/Technical_Report_KeyTrap.pdf https://www.isc.org/blogs/2024-bind-security-release/ https://www.securityweek.com/keytrap-dns-attack-could-disable-large-parts-of-internet-researchers/ https://www.theregister.com/2024/02/13/dnssec_vulnerability_internet/ https://lists.debian.org/debian-lts-announce/2024/02/msg00006.html https://lists.debian.org/debian-lts-announce/2024/05/msg00011.html http://www.openwall.com/lists/oss-security/2024/02/16/2 http://www.openwall.com/lists/oss-security/2024/02/16/3 Common Vulnerability Exposure (CVE) ID: CVE-2024-21405 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21405 Common Vulnerability Exposure (CVE) ID: CVE-2024-21391 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21391 Common Vulnerability Exposure (CVE) ID: CVE-2024-21372 Windows OLE Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21372 Common Vulnerability Exposure (CVE) ID: CVE-2024-21369 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21369 Common Vulnerability Exposure (CVE) ID: CVE-2024-21367 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21367 Common Vulnerability Exposure (CVE) ID: CVE-2024-21363 Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-21363
Copyright	Copyright (C) 2024 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.