nessus-plugins/scripts smb_nt_ms04-039.nasl,NONE,1.1
Update of /usr/local/cvs/nessus-plugins/scripts
In directory raccoon.nessus.org:/tmp/cvs-serv77883
Added Files:
smb_nt_ms04-039.nasl
Log Message:
added
--- NEW FILE: smb_nt_ms04-039.nasl ---
#
# This script was written by Noam Rathaus <noamr_at_beyondsecurity.com>
#
# See the Nessus Scripts License for details
#
#
#
if(description)
{
script_id(15714);
script_version("$Revision: 1.1 $");
script_cve_id("CAN-2004-0892");
name["english"] = "ISA Server 2000 and Proxy Server 2.0 Internet Content Spoofing (888258)";
script_name(english:name["english"]);
desc["english"] = "
The ISA Server 2000 and Proxy Server 2.0 have been found to be vulnerable to
a spoofing vulnerability that could enable an attacker to spoof trusted Internet
content. Users could believe they are accessing trusted Internet content when
in reality they are accessing malicious Internet content, for example a
malicious Web site. However, an attacker would first have to persuade a user to
visit the attacker's to attempt to exploit this vulnerability.
See http://www.microsoft.com/technet/security/bulletin/ms04-039.mspx
Risk factor : High";
script_description(english:desc["english"]);
summary["english"] = "Checks for hotfix Q888258";
script_summary(english:summary["english"]);
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004 Jeff Adams");
family["english"] = "Windows";
script_family(english:family["english"]);
script_dependencies("smb_hotfixes.nasl");
script_require_keys("SMB/registry_full_access","SMB/WindowsVersion");
script_require_ports(139, 445);
exit(0);
}
include("smb_nt.inc");
port = get_kb_item("SMB/transport");
if(!port)port = 139;
access = get_kb_item("SMB/registry_full_access");
if(!access)exit(0);
version = get_kb_item("SMB/WindowsVersion");
if(version)
{
# ISA Server check
key = "SOFTWARE\Microsoft\Fpc\";
item = "InstallDirectory";
value = string(registry_get_sz(key:key, item:item));
if(value)
{
key = "SOFTWARE\Microsoft\Fpc\Hotfixes\SP1\408\";
item = "kbs";
hf = registry_get_sz(key:key, item:item);
if(!hf)security_hole(port);
}
exit(0);
# Proxy Server check
key = "SOFTWARE\Microsoft\Windows NT\CurrentVersion\HotFix\KB888258";
item = "Comments";
value = registry_get_sz(item:item, key:key);
if ( value ) exit(0);
if("4.0" >< version)
{
security_hole(port);
exit(0);
}
}
This archive was generated by a fusion of
Pipermail 0.09 (Mailman edition) and
MHonArc 2.6.8.