Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Internet Authentication Service Could Allow Remote Code Execution (974318) |
Informations | |||
---|---|---|---|
Name | MS09-071 | First vendor Publication | 2009-12-08 |
Vendor | Microsoft | Last vendor Modification | 2009-12-09 |
Severity (Vendor) | Critical | Revision | 1.1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.1 (December 9, 2009): Added an entry to the Frequently Asked Questions (FAQ) Related to This Security Update section to explain this revision. This is an informational change only.Summary: This security update resolves two privately reported vulnerabilities in Microsoft Windows. The more severe of these vulnerabilities could allow remote code execution if messages received by the Internet Authentication Service server are copied incorrectly into memory when handling PEAP authentication attempts. On Windows Server 2008, the Internet Authentication Service is replaced by Network Policy Server (NPS). An attacker who successfully exploited either of these vulnerabilities could take complete control of an affected system. Servers using Internet Authentication Service or Network Policy Server are only affected when using PEAP with MS-CHAP v2 authentication. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS09-071.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
33 % | CWE-287 | Improper Authentication |
33 % | CWE-255 | Credentials Management |
33 % | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:6209 | |||
Oval ID: | oval:org.mitre.oval:def:6209 | ||
Title: | MS-CHAP Authentication Bypass Vulnerability | ||
Description: | The Internet Authentication Service (IAS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold and SP1, and Server 2008 Gold does not properly verify the credentials in an MS-CHAP v2 Protected Extensible Authentication Protocol (PEAP) authentication request, which allows remote attackers to access network resources via a malformed request, aka "MS-CHAP Authentication Bypass Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2009-3677 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-12-09 | Name : Microsoft Windows IAS Remote Code Execution Vulnerability (974318) File : nvt/secpod_ms09-071.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
60833 | Microsoft Windows Internet Authentication Service Crafted MS-CHAP v2 Message ... |
60832 | Microsoft Windows Internet Authentication Service Protected Extensible Authen... |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2009-12-10 | IAVM : 2009-A-0126 - Microsoft Internet Authentication Service Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0022101 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Internet Authentication Service EAP-MSCHAPv2 authentication bypass ... RuleID : 16329 - Revision : 8 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2009-12-08 | Name : The remote Windows host has multiple vulnerabilities in an authentication ser... File : smb_nt_ms09-071.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:46:25 |
|
2014-01-19 21:30:24 |
|
2013-11-11 12:41:15 |
|