Executive Summary

TitleVulnerability in Local Security Authority Subsystem Service Could Allow Denial of Service (974392)
NameMS09-069First vendor Publication2009-12-08
VendorMicrosoftLast vendor Modification2009-12-08
Severity (Vendor) ImportantRevision1.0

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:S/C:N/I:N/A:C)
Cvss Base Score6.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score8AuthenticationRequires single instance
Calculate full CVSS 2.0 Vectors scores


Revision Note: V1.0 (December 8, 2009): Bulletin published.Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow a denial of service if a remote, authenticated attacker, while communicating through Internet Protocol security (IPsec), sends a specially crafted ISAKMP message to the Local Security Authority Subsystem Service (LSASS) on an affected system.

Original Source

Url : https://technet.microsoft.com/en-us/library/security/MS09-069

CWE : Common Weakness Enumeration

100 %CWE-399Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:6639
Oval ID: oval:org.mitre.oval:def:6639
Title: Local Security Authority Subsystem Service Resource Exhaustion Vulnerability
Description: LSASS.exe in the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 allows remote authenticated users to cause a denial of service (CPU consumption) via a malformed ISAKMP request over IPsec, aka "Local Security Authority Subsystem Service Resource Exhaustion Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2009-3675
Version: 1
Platform(s): Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Definition Synopsis:

CPE : Common Platform Enumeration


OpenVAS Exploits

2009-12-09Name : Microsoft Windows LSASS Denial of Service Vulnerability (975467)
File : nvt/secpod_ms09-069.nasl

Open Source Vulnerability Database (OSVDB)

60831Microsoft Windows Local Security Authority Subsystem (LSASS) ISAKMP Message H...

Information Assurance Vulnerability Management (IAVM)

2009-12-10IAVM : 2009-B-0064 - Microsoft Windows Local Security Authority Subsystem Service (LSASS) Denial o...
Severity : Category II - VMSKEY : V0022096

Nessus® Vulnerability Scanner

2009-12-08Name : The remote Windows host has a denial of service vulnerability.
File : smb_nt_ms09-069.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
2014-02-17 11:46:24
  • Multiple Updates
2013-11-11 12:41:14
  • Multiple Updates