English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.818921
Category:Windows : Microsoft Bulletins
Title:Microsoft Windows Multiple Vulnerabilities (KB5008244)
Summary:This host is missing a critical security; update according to Microsoft KB5008244
Description:Summary:
This host is missing a critical security
update according to Microsoft KB5008244

Vulnerability Insight:
Multiple flaws exist due to:

- An elevation of privilege vulnerability in Windows Encrypting File System (EFS).

- An RCE vulnerability in Windows Encrypting File System (EFS).

- A memory corruption vulnerability in iSNS Server.

For more information about the vulnerabilities refer to Reference links.

Vulnerability Impact:
Successful exploitation will allow an attacker
to elevate privileges, disclose sensitive information and conduct
remote code execution.

Affected Software/OS:
- Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1

- Microsoft Windows 7 for x64-based Systems Service Pack 1

- Microsoft Windows 7 for 32-bit Systems Service Pack 1

Solution:
The vendor has released updates. Please see
the references for more information.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2021-40441
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-40441
Common Vulnerability Exposure (CVE) ID: CVE-2021-41333
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-41333
https://www.zerodayinitiative.com/advisories/ZDI-21-1552/
Common Vulnerability Exposure (CVE) ID: CVE-2021-43207
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43207
Common Vulnerability Exposure (CVE) ID: CVE-2021-43215
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43215
Common Vulnerability Exposure (CVE) ID: CVE-2021-43216
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43216
Common Vulnerability Exposure (CVE) ID: CVE-2021-43217
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43217
Common Vulnerability Exposure (CVE) ID: CVE-2021-43222
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43222
Common Vulnerability Exposure (CVE) ID: CVE-2021-43223
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43223
Common Vulnerability Exposure (CVE) ID: CVE-2021-43224
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43224
Common Vulnerability Exposure (CVE) ID: CVE-2021-43226
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43226
Common Vulnerability Exposure (CVE) ID: CVE-2021-43229
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43229
Common Vulnerability Exposure (CVE) ID: CVE-2021-43230
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43230
Common Vulnerability Exposure (CVE) ID: CVE-2021-43233
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43233
Common Vulnerability Exposure (CVE) ID: CVE-2021-43234
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43234
Common Vulnerability Exposure (CVE) ID: CVE-2021-43236
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43236
Common Vulnerability Exposure (CVE) ID: CVE-2021-43238
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43238
https://www.zerodayinitiative.com/advisories/ZDI-22-019/
Common Vulnerability Exposure (CVE) ID: CVE-2021-43245
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43245
Common Vulnerability Exposure (CVE) ID: CVE-2021-43883
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43883
Common Vulnerability Exposure (CVE) ID: CVE-2021-43893
http://packetstormsecurity.com/files/165560/Microsoft-Windows-EFSRPC-Arbitrary-File-Upload-Privilege-Escalation.html
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-43893
CopyrightCopyright (C) 2021 Greenbone Networks GmbH

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.