Summary
| Detail | |||
|---|---|---|---|
| Vendor | Microsoft | First view | 2013-11-12 |
| Product | Windows Server 2012 | Last view | 2020-11-11 |
| Version | r2 | Type | Os |
| Update | * | ||
| Edition | * | ||
| Language | * | ||
| Sofware Edition | * | ||
| Target Software | * | ||
| Target Hardware | * | ||
| Other | * | ||
| CPE Product | cpe:2.3:o:microsoft:windows_server_2012 | ||
Activity : Overall
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 7.8 | 2020-11-11 | CVE-2020-17087 | Windows Kernel Local Elevation of Privilege Vulnerability |
| 5.5 | 2020-11-11 | CVE-2020-17069 | Windows NDIS Information Disclosure Vulnerability |
| 5.5 | 2020-11-11 | CVE-2020-17056 | Windows Network File System Information Disclosure Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17055 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044. |
| 9.8 | 2020-11-11 | CVE-2020-17051 | Windows Network File System Remote Code Execution Vulnerability |
| 7.5 | 2020-11-11 | CVE-2020-17047 | Windows Network File System Denial of Service Vulnerability |
| 5.5 | 2020-11-11 | CVE-2020-17045 | Windows KernelStream Information Disclosure Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17044 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17043 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17044, CVE-2020-17055. |
| 8.8 | 2020-11-11 | CVE-2020-17042 | Windows Print Spooler Remote Code Execution Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17041 | Windows Print Configuration Elevation of Privilege Vulnerability |
| 9.8 | 2020-11-11 | CVE-2020-17040 | Windows Hyper-V Security Feature Bypass Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17038 | Win32k Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17010. |
| 5.5 | 2020-11-11 | CVE-2020-17036 | Windows Function Discovery SSDP Provider Information Disclosure Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17034 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17033 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17032 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17031 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 5.5 | 2020-11-11 | CVE-2020-17029 | Windows Canonical Display Driver Information Disclosure Vulnerability |
| 7.8 | 2020-11-11 | CVE-2020-17028 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17027, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17027 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17026, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17026 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17025, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17025 | Windows Remote Access Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17026, CVE-2020-17027, CVE-2020-17028, CVE-2020-17031, CVE-2020-17032, CVE-2020-17033, CVE-2020-17034, CVE-2020-17043, CVE-2020-17044, CVE-2020-17055. |
| 7.8 | 2020-11-11 | CVE-2020-17024 | Windows Client Side Rendering Print Provider Elevation of Privilege Vulnerability |
| 7.1 | 2020-11-11 | CVE-2020-17014 | Windows Print Spooler Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2020-17001. |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 23% (267) | CWE-200 | Information Exposure |
| 20% (228) | CWE-269 | Improper Privilege Management |
| 10% (121) | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 10% (120) | CWE-20 | Improper Input Validation |
| 9% (103) | CWE-264 | Permissions, Privileges, and Access Controls |
| 2% (27) | CWE-787 | Out-of-bounds Write |
| 1% (21) | CWE-404 | Improper Resource Shutdown or Release |
| 1% (21) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
| 1% (18) | CWE-665 | Improper Initialization |
| 1% (17) | CWE-281 | Improper Preservation of Permissions |
| 1% (16) | CWE-284 | Access Control (Authorization) Issues |
| 1% (13) | CWE-611 | Information Leak Through XML External Entity File Disclosure |
| 1% (13) | CWE-416 | Use After Free |
| 1% (13) | CWE-19 | Data Handling |
| 1% (12) | CWE-254 | Security Features |
| 0% (11) | CWE-125 | Out-of-bounds Read |
| 0% (10) | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
| 0% (6) | CWE-287 | Improper Authentication |
| 0% (5) | CWE-476 | NULL Pointer Dereference |
| 0% (5) | CWE-426 | Untrusted Search Path |
| 0% (5) | CWE-362 | Race Condition |
| 0% (5) | CWE-310 | Cryptographic Issues |
| 0% (4) | CWE-415 | Double Free |
| 0% (4) | CWE-401 | Failure to Release Memory Before Removing Last Reference ('Memory L... |
| 0% (4) | CWE-399 | Resource Management Errors |
SAINT Exploits
| Description | Link |
|---|---|
| Windows OLE Automation Array command execution | More info here |
| Windows RRAS Service Remote Code Execution Vulnerability | More info here |
| Windows OLE Package Manager CPackage::DoVerb() INF File Download Vulnerability | More info here |
ExploitDB Exploits
| id | Description |
|---|---|
| 35236 | MS14-064 Microsoft Windows OLE Package Manager Code Execution |
| 35235 | MS14-064 Microsoft Windows OLE Package Manager Code Execution Through Python |
| 35230 | Internet Explorer < 11 - OLE Automation Array Remote Code Execution (MSF) |
| 35229 | Internet Explorer <11 - OLE Automation Array Remote Code Execution |
| 35216 | MS Office 2007 and 2010 - OLE Arbitrary Command Execution |
| 35101 | Windows TrackPopupMenu Win32k NULL Pointer Dereference |
| 35055 | Windows OLE - Remote Code Execution "Sandworm" Exploit (MS14-060) |
| 35020 | MS14-060 Microsoft Windows OLE Package Manager Code Execution |
| 35019 | Windows OLE Package Manager SandWorm Exploit |
| 30397 | Windows Kernel win32k.sys - Integer Overflow (MS13-101) |
Information Assurance Vulnerability Management (IAVM)
| id | Description |
|---|---|
| 2015-A-0216 | Multiple Vulnerabilities in Microsoft Windows Journal (MS15-098) Severity: Category II - VMSKEY: V0061393 |
| 2015-A-0215 | Multiple Vulnerabilities in Microsoft Windows Task Management (MS15-102) Severity: Category II - VMSKEY: V0061391 |
| 2015-A-0212 | Multiple Vulnerabilities in Microsoft Graphics Component (MS15-097) Severity: Category II - VMSKEY: V0061385 |
| 2015-B-0111 | Microsoft Hyper-V Security Bypass Vulnerability (MS15-105) Severity: Category II - VMSKEY: V0061371 |
| 2015-A-0197 | Microsoft Command Line Parameter Information Disclosure Vulnerability (MS15-088) Severity: Category II - VMSKEY: V0061313 |
| 2015-A-0196 | Multiple Vulnerabilities in Microsoft Graphics Component (MS15-080) Severity: Category II - VMSKEY: V0061311 |
| 2015-A-0194 | Multiple Vulnerabilities in Microsoft Office (MS15-081) Severity: Category II - VMSKEY: V0061307 |
| 2015-A-0193 | Multiple Privilege Escalation Vulnerabilities in Microsoft Windows (MS15-090) Severity: Category II - VMSKEY: V0061305 |
| 2015-A-0192 | Microsoft Windows Mount Manager Privilege Escalation Vulnerability (MS15-085) Severity: Category I - VMSKEY: V0061303 |
| 2015-A-0190 | Multiple Vulnerabilities in Microsoft Remote Desktop Protocol (RDP) (MS15-082) Severity: Category II - VMSKEY: V0061299 |
| 2015-A-0188 | Cumulative Security Update for Microsoft Internet Explorer (MS15-079) Severity: Category I - VMSKEY: V0061297 |
| 2015-B-0096 | Microsoft WebDAV Information Disclosure Vulnerability (MS15-089) Severity: Category II - VMSKEY: V0061285 |
| 2015-A-0125 | Microsoft Common Controls Could Allow Remote Code Execution Vulnerability (MS... Severity: Category II - VMSKEY: V0060943 |
| 2015-A-0111 | Microsoft SChannel Information Disclosure Vulnerability (MS15-055) Severity: Category I - VMSKEY: V0060659 |
| 2015-A-0107 | Microsoft Service Control Manager Privilege Escalation Vulnerability (MS15-050) Severity: Category II - VMSKEY: V0060651 |
| 2015-A-0108 | Multiple Vulnerabilities in Microsoft Windows Kernel-Mode Driver (MS15-051) Severity: Category II - VMSKEY: V0060653 |
| 2015-B-0049 | Microsoft Windows Hyper-V Denial of Service Vulnerability (MS15-042) Severity: Category II - VMSKEY: V0059909 |
| 2015-A-0092 | Microsoft Windows HTTP stack Remote Code Execution Vulnerability (MS15-034) Severity: Category I - VMSKEY: V0059899 |
| 2015-A-0091 | Multiple Vulnerabilities in Microsoft Windows (MS15-038) Severity: Category II - VMSKEY: V0059897 |
| 2015-B-0037 | Microsoft Windows Task Scheduler Security Feature Bypass Vulnerability (MS15-... Severity: Category II - VMSKEY: V0059023 |
| 2015-B-0036 | Microsoft Windows Information Disclosure Vulnerability (MS15-024) Severity: Category II - VMSKEY: V0059021 |
| 2015-B-0034 | Microsoft Windows Photo Decoder Component Information Disclosure Vulnerabilit... Severity: Category II - VMSKEY: V0059017 |
| 2015-A-0053 | Multiple Vulnerabilities in Microsoft Windows (MS15-020) Severity: Category II - VMSKEY: V0059001 |
| 2015-A-0048 | Multiple Vulnerabilities in Windows Kernel (MS15-025) Severity: Category II - VMSKEY: V0058995 |
| 2015-B-0017 | Microsoft Group Policy Security Feature Bypass Vulnerability (MS15-014) Severity: Category I - VMSKEY: V0058755 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55983 - Type : OS-WINDOWS - Revision : 1 |
| 2020-11-12 | Microsoft Windows digital signature spoofing attempt RuleID : 55982 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-22 | Microsoft Windows NetrServerReqChallenge RPC transport sign and seal disablin... RuleID : 55802 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-20 | Microsoft Windows Netlogon crafted NetrServerAuthenticate elevation of privil... RuleID : 55704 - Type : OS-WINDOWS - Revision : 2 |
| 2020-10-20 | Microsoft Windows Netlogon crafted NetrServerReqChallenge elevation of privil... RuleID : 55703 - Type : OS-WINDOWS - Revision : 2 |
| 2020-10-13 | Active Directory LDAP addRequest crafted dnsRecord information leak attempt RuleID : 55206 - Type : SERVER-OTHER - Revision : 1 |
| 2020-10-08 | Microsoft Windows kernel driver escalation of privilege attempt RuleID : 55188 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-08 | Microsoft Windows kernel driver escalation of privilege attempt RuleID : 55187 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-06 | Microsoft Windows kernel DirectComposition use after free attempt RuleID : 55162 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-06 | Microsoft Windows kernel DirectComposition use after free attempt RuleID : 55161 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-06 | Microsoft Windows win32k kernel driver use after free attempt RuleID : 55144 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-06 | Microsoft Windows win32k kernel driver use after free attempt RuleID : 55143 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-06 | Microsoft Windows CLFS Driver elevation of privilege attempt RuleID : 55142 - Type : FILE-OTHER - Revision : 1 |
| 2020-10-06 | Microsoft Windows CLFS Driver elevation of privilege attempt RuleID : 55141 - Type : FILE-OTHER - Revision : 1 |
| 2020-10-06 | Microsoft Windows Active Directory information disclosure attempt RuleID : 55140 - Type : SERVER-OTHER - Revision : 1 |
| 2020-10-06 | Microsoft Windows Active Directory information disclosure attempt RuleID : 55139 - Type : SERVER-OTHER - Revision : 1 |
| 2020-10-01 | Microsoft Windows Win32k local privilege escalation attempt RuleID : 54919 - Type : OS-WINDOWS - Revision : 1 |
| 2020-10-01 | Microsoft Windows Win32k local privilege escalation attempt RuleID : 54918 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-19 | Windows print spooler elevation of privilege attempt RuleID : 54820 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-19 | Windows print spooler elevation of privilege attempt RuleID : 54819 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-19 | Windows Print Spooler elevation of privilege attempt RuleID : 54818 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-19 | Windows Print Spooler elevation of privilege attempt RuleID : 54817 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-15 | Microsoft Windows GDI privilege escalation attempt RuleID : 54738 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-15 | Microsoft Windows GDI privilege escalation attempt RuleID : 54737 - Type : OS-WINDOWS - Revision : 1 |
| 2020-09-15 | Microsoft Windows DNS Resolver local privilege escalation attempt RuleID : 54736 - Type : OS-WINDOWS - Revision : 1 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4053578.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4053579.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4053580.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4053581.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4054517.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4054518.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4054519.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_4054520.nasl - Type: ACT_GATHER_INFO |
| 2017-12-12 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_dec_win2008.nasl - Type: ACT_GATHER_INFO |
| 2017-11-30 | Name: The Internet Explorer installation on the remote host is affected by multiple... File: smb_nt_ms17_jul_internet_explorer.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048952.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048953.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048954.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048955.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048956.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048957.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048958.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_4048959.nasl - Type: ACT_GATHER_INFO |
| 2017-11-14 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_nov_win2008.nasl - Type: ACT_GATHER_INFO |
| 2017-11-03 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_aug_4034668.nasl - Type: ACT_GATHER_INFO |
| 2017-11-03 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_jul_4025338.nasl - Type: ACT_GATHER_INFO |
| 2017-11-03 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_oct_4042895.nasl - Type: ACT_GATHER_INFO |
| 2017-11-03 | Name: The remote Windows host is affected by multiple vulnerabilities. File: smb_nt_ms17_sep_4038781.nasl - Type: ACT_GATHER_INFO |
| 2017-10-20 | Name: The remote Windows host is affected by an information disclosure vulnerability. File: smb_nt_ms17_apr_3217841.nasl - Type: ACT_GATHER_INFO |
| 2017-10-20 | Name: The remote Windows host is affected by a remote code execution vulnerability. File: smb_nt_ms17_may_4020535.nasl - Type: ACT_GATHER_INFO |
