MS10-014

Executive Summary

Summary
Title	Vulnerability in Kerberos Could Allow Denial of Service (977290)

Informations
Name	MS10-014	First vendor Publication	2010-02-09
Vendor	Microsoft	Last vendor Modification	2010-02-09
Severity (Vendor)	Important	Revision	1.0

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:S/C:N/I:N/A:C)
Cvss Base Score	6.3	Attack Range	Network
Cvss Impact Score	6.9	Attack Complexity	Medium
Cvss Expoit Score	6.8	Authentification	Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

Revision Note: V1.0 (February 9, 2010): Bulletin published.

Summary: This security update resolves a privately reported vulnerability in Microsoft Windows. The vulnerability could allow denial of service if a specially crafted ticket renewal request is sent to the Windows Kerberos domain from an authenticated user on a trusted non-Windows Kerberos realm. The denial of service could persist until the domain controller is restarted.

Original Source

Url : http://www.microsoft.com/technet/security/bulletin/MS10-014.mspx

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:8428

Oval ID:	oval:org.mitre.oval:def:8428
Title:	Kerberos Null Pointer Dereference Vulnerability
Description:	The Key Distribution Center (KDC) in Kerberos in Microsoft Windows 2000 SP4, Server 2003 SP2, and Server 2008 Gold and SP2, when a trust relationship with a non-Windows Kerberos realm exists, allows remote authenticated users to cause a denial of service (NULL pointer dereference and domain controller outage) via a crafted Ticket Granting Ticket (TGT) renewal request, aka "Kerberos Null Pointer Dereference Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-0035	Version:	1
Platform(s):	Microsoft Windows 2000 Microsoft Windows Server 2003 Microsoft Windows Server 2008	Product(s):
Definition Synopsis:
Vulnerable Microsoft Windows 2000 SP4 or later Microsoft Windows 2000 SP4 or later is installed AND Windows NT server product option this is an NT Server (stand-alone) AND this is an NT Server (domain controller) AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 5.0.2195.7361 OR Vulnerable Microsoft Windows Server 2003 x86/x64/ia64 SP2 IF Microsoft Windows Server 2003 SP2 (x64) is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 (ia64) SP2 is installed AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 5.2.3790.4628 OR Vulnerable Microsoft Windows Server 2008 32bit/x64/ia64 - GDR IF Microsoft Windows Server 2008 (32-bit) is installed AND Microsoft Windows Server 2008 (64-bit) is installed AND Microsoft Windows Server 2008 (ia-64) is installed AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 6.0.6001.18374 AND the version of Kdcsvc.dll is greater than or equal 6.0.6001.18000 OR Vulnerable Microsoft Windows Server 2008 32bit/x64/ia64 - LDR IF Microsoft Windows Server 2008 (32-bit) is installed AND Microsoft Windows Server 2008 (64-bit) is installed AND Microsoft Windows Server 2008 (ia-64) is installed AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 6.0.6001.22574 AND the version of Kdcsvc.dll is greater than or equal 6.0.6001.22000 OR Vulnerable Microsoft Windows Server 2008 SP2 32bit/x64/ia64 - GDR IF Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 6.0.6002.18157 AND the version of Kdcsvc.dll is greater than or equal 6.0.6002.18000 OR Vulnerable Microsoft Windows Server 2008 SP2 32bit/x64/ia64 - LDR IF Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed AND the system is being used as AD - DomainRole is 4 or 5 AND the version of Kdcsvc.dll is less than 6.0.6002.22280 AND the version of Kdcsvc.dll is greater than or equal 6.0.6002.22000

CPE : Common Platform Enumeration

Type	Description	Count
Os	Microsoft Windows 2000 cpe:/o:microsoft:windows_2000::sp4:server	1
Os	Microsoft Windows Server 2003 cpe:/o:microsoft:windows_server_2003::sp2 cpe:/o:microsoft:windows_server_2003::sp2:x64 cpe:/o:microsoft:windows_server_2003::sp2:itanium	3
Os	Microsoft Windows Server 2008 cpe:/o:microsoft:windows_server_2008::sp2:x64 cpe:/o:microsoft:windows_server_2008:::x64	2