Executive Summary

Informations
NameCVE-2017-0004First vendor Publication2017-01-10
VendorCveLast vendor Modification2018-10-12

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

The Local Security Authority Subsystem Service (LSASS) in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows remote attackers to cause a denial of service (reboot) via a crafted authentication request, aka "Local Security Authority Subsystem Service Denial of Service Vulnerability."

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0004

CWE : Common Weakness Enumeration

%idName
100 %CWE-20Improper Input Validation

CPE : Common Platform Enumeration

TypeDescriptionCount
Os1
Os2
Os1

Snort® IPS/IDS

DateDescription
2016-12-13Microsoft Windows LSASS GSS-API DER decoding null pointer dereference attempt
RuleID : 40759 - Revision : 3 - Type : OS-WINDOWS

Nessus® Vulnerability Scanner

DateDescription
2017-01-10Name : The remote Windows host is affected multiple vulnerabilities.
File : smb_nt_ms17-004.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/95318
MS https://docs.microsoft.com/en-us/security-updates/securitybulletins/2017/ms17...
SECTRACK http://www.securitytracker.com/id/1037571

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
DateInformations
2018-10-13 05:19:08
  • Multiple Updates
2017-01-18 09:28:29
  • Multiple Updates
2017-01-13 09:23:57
  • Multiple Updates
2017-01-11 21:23:36
  • Multiple Updates
2017-01-11 13:25:28
  • Multiple Updates
2017-01-11 05:23:44
  • First insertion