Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2011-1268 | First vendor Publication | 2011-06-16 |
Vendor | Cve | Last vendor Modification | 2023-12-07 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The SMB client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote SMB servers to execute arbitrary code via a crafted (1) SMBv1 or (2) SMBv2 response, aka "SMB Response Parsing Vulnerability." |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1268 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-20 | Improper Input Validation |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:12746 | |||
Oval ID: | oval:org.mitre.oval:def:12746 | ||
Title: | SMB Response Parsing Vulnerability | ||
Description: | The SMB client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote SMB servers to execute arbitrary code via a crafted (1) SMBv1 or (2) SMBv2 response, aka "SMB Response Parsing Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-1268 | Version: | 8 |
Platform(s): | Microsoft Windows XP Microsoft Windows Server 2003 Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2011-08-11 | Name : Microsoft Data Access Components Remote Code Execution Vulnerabilities (2560656) File : nvt/secpod_ms11-059.nasl |
2011-06-15 | Name : Microsoft SMB Client Remote Code Execution Vulnerabilities (2536276) File : nvt/secpod_ms11-043.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
72960 | Microsoft SMB Client Response Handling Remote Code Execution |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2011-06-16 | IAVM : 2011-A-0079 - Microsoft SMB Client Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0028592 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Smb2Create_Finalize malformed EndOfFile field exploit attempt RuleID : 19199 - Revision : 11 - Type : OS-WINDOWS |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1221.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110829_samba_and_cifs_utils_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
2011-08-30 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1221.nasl - Type : ACT_GATHER_INFO |
2011-06-15 | Name : Arbitrary code can be executed on the remote host through the installed SMB c... File : smb_nt_ms11-043.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Source | Url |
---|---|
MS | https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11... |
OVAL | https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova... |
Alert History
Date | Informations |
---|---|
2024-02-02 01:15:44 |
|
2024-02-01 12:04:26 |
|
2023-12-07 21:28:02 |
|
2023-09-05 12:14:43 |
|
2023-09-05 01:04:18 |
|
2023-09-02 12:14:46 |
|
2023-09-02 01:04:22 |
|
2023-08-12 12:17:49 |
|
2023-08-12 01:04:23 |
|
2023-08-11 12:14:52 |
|
2023-08-11 01:04:31 |
|
2023-08-06 12:14:17 |
|
2023-08-06 01:04:23 |
|
2023-08-04 12:14:22 |
|
2023-08-04 01:04:25 |
|
2023-07-14 12:14:21 |
|
2023-07-14 01:04:22 |
|
2023-03-29 01:16:16 |
|
2023-03-28 12:04:28 |
|
2022-10-11 12:12:47 |
|
2022-10-11 01:04:08 |
|
2021-05-04 12:14:13 |
|
2021-04-22 01:15:27 |
|
2020-09-28 17:22:43 |
|
2020-05-23 00:28:06 |
|
2019-05-09 12:03:46 |
|
2019-02-26 17:19:35 |
|
2018-10-31 00:20:13 |
|
2018-10-13 05:18:31 |
|
2018-09-20 12:08:52 |
|
2017-09-19 09:24:20 |
|
2016-09-30 01:02:54 |
|
2016-08-31 12:02:39 |
|
2016-08-05 12:02:59 |
|
2016-06-28 18:36:00 |
|
2016-04-26 20:39:22 |
|
2014-02-17 11:01:21 |
|
2014-01-19 21:27:41 |
|
2013-11-11 12:39:17 |
|
2013-05-10 22:57:16 |
|