MS13-098 is Back?

gglenm · November 23, 2023, 5:19pm

InsightVM is flagging Windows 10 computers as having the CVE-2013-3900: MS13-098 vulnerability even though they have already been fixed. I confirmed this easily by checking my own device and saw that the registry entries matched the MS recommendation. This is suddenly cropping up today.

Anybody else seeing this?

pmcauley_pmcauley · November 23, 2023, 6:47pm

Hey @gglenm our Engineering Team are currently aware of this and testing a fix as we speak

gglenm · November 23, 2023, 7:48pm

Thank you @pmcauley. Any chance we could get a post back here when it’s deployed?

pmcauley_pmcauley · November 23, 2023, 9:14pm

Hi @gglenm happy to report it will be included in today’s content release

bcoy · December 12, 2023, 7:56pm

Hey @pmcauley_pmcauley has this been resolved? I still show this as an issue in my console.

gglenm · December 12, 2023, 8:34pm

Yes, this was fixed right when you said it would be.

pmcauley_pmcauley · December 13, 2023, 6:50am

Hi @bcoy yes a fix was pushed out for this, if you are still experiencing issues please make sure you are latest version 6.6.230. If the issue still persists please reach out to our support team and we’ll be able to investigate with you.

neo · April 4, 2024, 5:45am

Hi,

On our Win 11 i set the key with this powershell skript: MS13-098 anyone? - #13 by jmerchant, but Rapid7 Insight Agent or the backend ist still flagging the system for CVE-2013-3900. Any ideas where the problem is?