I wrote up a quick script to check for the existence of the ASN.1 vulnerability. (simply looks for a file)
Code:
On Error Resume Next
Dim objFSO
Dim objInputFile
Const FILE_PATH = "C:\CurrentServers.txt"
Const CHECK_FILE = "\ADMIN$\system32\Msasn1.dll"
Set objFSO = CreateObject("Scripting.FileSystemObject")
Const FOR_READING = 1
Set objInputFile = objFSO.OpenTextFile(FILE_PATH, FOR_READING)
While Not objInputFile.AtEndOfStream
sCurLine = Trim(objInputFile.ReadLine)
If sCurLine <> "" Then
If objFSO.FileExists("\\" & sCurLine & CHECK_FILE) Then
WScript.Echo "Exists: " & sCurLine
End If
End If
Wend
This code has ZERO error handing
It looks for a file in C:\ called CurrentServers.txt
That file should contain all of the machines you want to scan.
It will simply output to the command prompt the machines where the file exists.
(RUN FROM COMMAND LINE)
If you don't you'll end up with a message box for EVERY machine
(to run from command line run 'cscript <scriptname>.vbs'
Copy the text into a text file and name the text file something.vbs
THIS SCRIPT IS PROVIDED WITH ZERO/ZILCH/NONE/NULL WARRANTY.
I wrote it in about 1 minute so it just does the job and doesn't look pretty
Linear Mode
