Windows : MS Task Scheduler vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.13852

Categoría: Windows

Título: MS Task Scheduler vulnerability

Resumen: NOSUMMARY

Descripción: Description:

There is a flaw in the Task Scheduler application which could allow a
remote attacker to execute code remotely. There are many attack vectors
for this flaw. An attacker, exploiting this flaw, would need to either
have the ability to connect to the target machine or be able to coerce a
local user to either install a .job file or browse to a malicious website.

See also : http://www.microsoft.com/technet/security/bulletin/ms04-022.mspx

Risk factor : High

Referencia Cruzada: BugTraq ID: 10708
Common Vulnerability Exposure (CVE) ID: CVE-2004-0212
Bugtraq: 20040714 Microsoft Windows Task Scheduler '.job' Stack Overflow (Google Search)
http://marc.info/?l=bugtraq&m=108981273009250&w=2
Bugtraq: 20040714 Unchecked buffer in mstask.dll (Google Search)
http://marc.info/?l=bugtraq&m=108981403025596&w=2
Cert/CC Advisory: TA04-196A
http://www.us-cert.gov/cas/techalerts/TA04-196A.html
CERT/CC vulnerability note: VU#228028
http://www.kb.cert.org/vuls/id/228028
http://www.ngssoftware.com/advisories/mstaskjob.txt
Microsoft Security Bulletin: MS04-022
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-022
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1344
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1781
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1964
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3428
http://secunia.com/advisories/12060
XForce ISS Database: win-taskscheduler-bo(16591)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16591

Copyright This script is Copyright (C) 2004 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.13852
Categoría:	Windows
Título:	MS Task Scheduler vulnerability
Resumen:	NOSUMMARY
Descripción:	Description: There is a flaw in the Task Scheduler application which could allow a remote attacker to execute code remotely. There are many attack vectors for this flaw. An attacker, exploiting this flaw, would need to either have the ability to connect to the target machine or be able to coerce a local user to either install a .job file or browse to a malicious website. See also : http://www.microsoft.com/technet/security/bulletin/ms04-022.mspx Risk factor : High
Referencia Cruzada:	BugTraq ID: 10708 Common Vulnerability Exposure (CVE) ID: CVE-2004-0212 Bugtraq: 20040714 Microsoft Windows Task Scheduler '.job' Stack Overflow (Google Search) http://marc.info/?l=bugtraq&m=108981273009250&w=2 Bugtraq: 20040714 Unchecked buffer in mstask.dll (Google Search) http://marc.info/?l=bugtraq&m=108981403025596&w=2 Cert/CC Advisory: TA04-196A http://www.us-cert.gov/cas/techalerts/TA04-196A.html CERT/CC vulnerability note: VU#228028 http://www.kb.cert.org/vuls/id/228028 http://www.ngssoftware.com/advisories/mstaskjob.txt Microsoft Security Bulletin: MS04-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-022 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1344 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1781 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1964 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3428 http://secunia.com/advisories/12060 XForce ISS Database: win-taskscheduler-bo(16591) https://exchange.xforce.ibmcloud.com/vulnerabilities/16591
Copyright	This script is Copyright (C) 2004 Tenable Network Security