9.3 - TA11-067A

Executive Summary

Summary
Title	Microsoft Updates for Multiple Vulnerabilities

Informations
Name	TA11-067A	First vendor Publication	2011-03-08
Vendor	US-CERT	Last vendor Modification	2011-03-08
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

There are multiple vulnerabilities in Microsoft Windows and Microsoft Office. Microsoft has released updates to address these vulnerabilities.

I. Description

The Microsoft Security Bulletin Summary for March 2011 describes multiple vulnerabilities in Microsoft Windows and Microsoft Office.
Microsoft has released updates to address the vulnerabilities.

II. Impact

A remote, unauthenticated attacker could execute arbitrary code, cause a denial of service, or gain unauthorized access to your files or system.

III. Solution

Apply updates

Microsoft has provided updates for these vulnerabilities in the Microsoft Security Bulletin Summary for March 2011. That bulletin describes any known issues related to the updates. Administrators are encouraged to note these issues and test for any potentially adverse effects. In addition, administrators should consider using an automated update distribution system such as Windows Server Update Services (WSUS).

Original Source

Url : http://www.us-cert.gov/cas/techalerts/TA11-067A.html

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-20	Improper Input Validation

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11910

Oval ID:	oval:org.mitre.oval:def:11910
Title:	DEPRECATED: Untrusted search path vulnerability in Microsoft Office Groove 2007
Description:	Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse (1) mso.dll or (2) GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard (.vcg) or Groove Tool Archive (.gta) file, aka "Microsoft Groove Insecure Library Loading Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3146	Version:	6
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Microsoft Office Groove 2007
Definition Synopsis:
Microsoft Office Groove 2007 is installed AND IF Check if MSO.dll file version in Microsoft Office Groove SP1 is less than or equal to 12.0.6213.1000 AND Check if Microsoft Office Groove 2007 service pack 1 is installed OR Check if MSO.dll file version in Microsoft Office Groove SP2 is less than or equal to 12.0.6425.1000 AND Check if Microsoft Office Groove 2007 service pack 2 is installed OR Check if MSO.dll file version in Microsoft Office Groove is less than or equal to 12.0.4518.1014

Definition Id: oval:org.mitre.oval:def:12281

Oval ID:	oval:org.mitre.oval:def:12281
Title:	DVR-MS Vulnerability
Description:	SBE.dll in the Stream Buffer Engine in Windows Media Player and Windows Media Center in Microsoft Windows XP SP2 and SP3, Windows XP Media Center Edition 2005 SP3, Windows Vista SP1 and SP2, Windows 7 Gold and SP1, and Windows Media Center TV Pack for Windows Vista does not properly parse Digital Video Recording (.dvr-ms) files, which allows remote attackers to execute arbitrary code via a crafted file, aka "DVR-MS Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0042	Version:	7
Platform(s):	Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7	Product(s):
Definition Synopsis:
Vulnerable Windows XP Media Center Edition 2005 Service Pack 3 Microsoft Windows XP (x86) SP3 is installed AND Media Center is installed AND the version of Encdec.dll is less than 6.5.2715.5512 OR Vulnerable Microsoft Windows XP (x86) SP3 Microsoft Windows XP (x86) SP3 is installed AND the version of Encdec.dll is less than 6.5.2600.6076 OR Vulnerable Microsoft Windows XP x64 SP2 Microsoft Windows XP x64 Edition SP2 is installed AND the version of Encdec.dll is less than 6.5.3790.4826 OR Vulnerable Microsoft Windows Vista SP1 x86/x64 Microsoft Windows Vista SP1 x86/x64 Microsoft Windows Vista (32-bit) Service Pack 1 is installed AND Microsoft Windows Vista x64 Edition Service Pack 1 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.6001.18571 OR LDR the version of Encdec.dll is less than 6.6.6001.22822 AND the version of Encdec.dll is greater than or equal 6.6.6001.22000 OR Vulnerable Microsoft Windows Vista SP2 x86/x64 Microsoft Windows Vista SP2 x86/x64 Microsoft Windows Vista (32-bit) Service Pack 2 is installed AND Microsoft Windows Vista x64 Edition Service Pack 2 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.6002.18363 OR LDR the version of Encdec.dll is less than 6.6.6002.22558 AND the version of Encdec.dll is greater than or equal 6.6.6002.22000 OR Vulnerable Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64 Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64 Microsoft Windows 7 (32-bit) is installed AND Microsoft Windows 7 x64 Edition is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.7600.16724 OR LDR the version of Encdec.dll is less than 6.6.7600.20865 AND the version of Encdec.dll is greater than or equal to 6.6.7600.20000 OR Vulnerable Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64 SP1 Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64 SP1 Microsoft Windows 7 (32-bit) Service Pack 1 is installed AND Microsoft Windows 7 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.7601.17528 OR LDR the version of Encdec.dll is less than 6.6.7601.21626 AND the version of Encdec.dll is greater than or equal to 6.6.7601.21000

Definition Id: oval:org.mitre.oval:def:12480

Oval ID:	oval:org.mitre.oval:def:12480
Title:	Remote Desktop Insecure Library Loading Vulnerability
Description:	Untrusted search path vulnerability in the client in Microsoft Remote Desktop Connection 5.2, 6.0, 6.1, and 7.0 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a .rdp file, aka "Remote Desktop Insecure Library Loading Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0029	Version:	5
Platform(s):	Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7	Product(s):
Definition Synopsis:
Remote Desktop Connection 5.2 Client on Microsoft Windows XP (x86) SP3 Microsoft Windows XP (x86) SP3 is installed AND the version of 2k3mstscax.dll is less than 5.2.3790.4807 OR Remote Desktop Connection 6.1 Client on Microsoft Windows XP (x86) SP3 Microsoft Windows XP (x86) SP3 is installed AND GDR or QFE Service branch the version of Mstscax.dll is less than 6.0.6001.18589 OR QFE the version of Mstscax.dll is less than 6.0.6001.22840 AND the version of Mstscax.dll is greater than or equal 6.0.6001.22000 OR Remote Desktop Connection 6.0 Client on Microsoft Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2 Microsoft Windows XP x64 SP2, Server 2003 x86/x64/ia64 SP2 Microsoft Windows XP x64 Edition SP2 is installed AND Microsoft Windows Server 2003 SP2 (x86) is installed AND Microsoft Windows Server 2003 SP2 (x64) is installed AND GDR or QFE Service branch GDR the version of Mstscax.dll is less than 6.0.6001.18564 AND the version of Mstscax.dll is greater than or equal 6.0.6001.18000 OR QFE the version of Mstscax.dll is less than 6.0.6001.22815 AND the version of Mstscax.dll is greater than or equal 6.0.6001.22000 OR Remote Desktop Connection 6.1 Client on Microsoft Windows Vista x86/x64 SP1, Server 2008 x86/x64/ia64 Microsoft Windows Vista x86/x64 SP1, Server 2008 x86/x64/ia64 Microsoft Windows Vista (32-bit) Service Pack 1 is installed AND Microsoft Windows Vista x64 Edition Service Pack 1 is installed AND Microsoft Windows Server 2008 (32-bit) is installed AND Microsoft Windows Server 2008 (64-bit) is installed AND Microsoft Windows Server 2008 (ia-64) is installed AND GDR or LDR Service branch the version of Mstscax.dll is less than 6.0.6001.18564 OR LDR the version of Mstscax.dll is less than 6.0.6001.22815 AND the version of Mstscax.dll is greater than or equal 6.0.6001.22000 OR Remote Desktop Connection 6.1 Client on Microsoft Windows Vista x86/x64 SP2, Server 2008 x86/x64/ia64 SP2 Microsoft Windows Vista x86/x64 SP2, Server 2008 x86/x64/ia64 SP2 Microsoft Windows Vista (32-bit) Service Pack 2 is installed AND Microsoft Windows Vista x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 (32-bit) Service Pack 2 is installed AND Microsoft Windows Server 2008 x64 Edition Service Pack 2 is installed AND Microsoft Windows Server 2008 Itanium-Based Edition Service Pack 2 is installed AND GDR or LDR Service branch the version of Mstscax.dll is less than 6.0.6002.18356 OR LDR the version of Mstscax.dll is less than 6.0.6002.22550 AND the version of Mstscax.dll is greater than or equal 6.0.6002.22000 OR Remote Desktop Connection 7.0 Client on Microsoft Windows XP (x86) SP2, Windows Vista x86/x64 SP1/SP2, Windows 7 x86/x64, Windows Server 2008 R2 x64/ia64 Microsoft Windows XP (x86) SP2, Windows Vista x86/x64 SP1/SP2, Windows 7 x86/x64, Windows Server 2008 R2 x64/ia64 Microsoft Windows XP (x86) SP3 is installed AND Microsoft Windows Vista (32-bit) Service Pack 1 is installed AND Microsoft Windows Vista x64 Edition Service Pack 1 is installed AND Microsoft Windows Vista (32-bit) Service Pack 2 is installed AND Microsoft Windows Vista x64 Edition Service Pack 2 is installed AND Microsoft Windows 7 (32-bit) is installed AND Microsoft Windows 7 x64 Edition is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND Microsoft Windows Server 2008 R2 Itanium-Based Edition is installed AND GDR or LDR Service branch GDR the version of Mstscax.dll is less than 6.1.7600.16722 AND the version of Mstscax.dll is greater than or equal 6.1.7600.16000 OR LDR the version of Mstscax.dll is less than 6.1.7600.20861 AND the version of Mstscax.dll is greater than or equal 6.1.7600.20000

Definition Id: oval:org.mitre.oval:def:12506

Oval ID:	oval:org.mitre.oval:def:12506
Title:	DirectShow Insecure Library Loading Vulnerability
Description:	Untrusted search path vulnerability in DirectShow in Microsoft Windows Vista SP1 and SP2, Windows 7 Gold and SP1, Windows Server 2008 R2 and R2 SP1, and Windows Media Center TV Pack for Windows Vista allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Digital Video Recording (.dvr-ms), Windows Recorded TV Show (.wtv), or .mpg file, aka "DirectShow Insecure Library Loading Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0032	Version:	7
Platform(s):	Microsoft Windows XP Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 Microsoft Windows 7	Product(s):
Definition Synopsis:
Vulnerable Microsoft Windows Vista SP1 x86/x64 Microsoft Windows Vista SP1 x86/x64 Microsoft Windows Vista (32-bit) Service Pack 1 is installed AND Microsoft Windows Vista x64 Edition Service Pack 1 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.6001.18571 OR LDR the version of Encdec.dll is less than 6.6.6001.22822 AND the version of Encdec.dll is greater than or equal 6.6.6001.22000 OR Vulnerable Microsoft Windows Vista SP2 x86/x64 Microsoft Windows Vista SP2 x86/x64 Microsoft Windows Vista (32-bit) Service Pack 2 is installed AND Microsoft Windows Vista x64 Edition Service Pack 2 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.6002.18363 OR LDR the version of Encdec.dll is less than 6.6.6002.22558 AND the version of Encdec.dll is greater than or equal 6.6.6002.22000 OR Vulnerable Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64 Microsoft Windows 7 x86/x64, Windows Server 2008 R2 x64 Microsoft Windows 7 (32-bit) is installed AND Microsoft Windows 7 x64 Edition is installed AND Microsoft Windows Server 2008 R2 x64 Edition is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.7600.16724 OR LDR the version of Encdec.dll is less than 6.6.7600.20865 AND the version of Encdec.dll is greater than or equal to 6.6.7600.20000 OR Vulnerable Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64 SP1 Microsoft Windows 7 x86/x64 SP1, Windows Server 2008 R2 x64 SP1 Microsoft Windows 7 (32-bit) Service Pack 1 is installed AND Microsoft Windows 7 x64 Service Pack 1 is installed AND Microsoft Windows Server 2008 R2 x64 Service Pack 1 is installed AND GDR or LDR Service branch the version of Encdec.dll is less than 6.6.7601.17528 OR LDR the version of Encdec.dll is less than 6.6.7601.21626 AND the version of Encdec.dll is greater than or equal to 6.6.7601.21000

Definition Id: oval:org.mitre.oval:def:12632

Oval ID:	oval:org.mitre.oval:def:12632
Title:	Microsoft Groove Insecure Library Loading Vulnerability
Description:	Multiple untrusted search path vulnerabilities in Microsoft Groove 2007 SP2 allow local users to gain privileges via a Trojan horse (1) mso.dll or (2) GroovePerfmon.dll file in the current working directory, as demonstrated by a directory that contains a Groove vCard (.vcg) or Groove Tool Archive (.gta) file, aka "Microsoft Groove Insecure Library Loading Vulnerability."
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2010-3146	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008	Product(s):	Microsoft Office Groove 2007
Definition Synopsis:
Microsoft Office Groove 2007 is installed AND Groove.exe version is less than 12.0.6550.5004

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Groove cpe:2.3:a:microsoft:groove:2007:sp2::::::	1
Application	Microsoft Remote Desktop Connection Client cpe:2.3:a:microsoft:remote_desktop_connection_client:7.0:::::::* cpe:2.3:a:microsoft:remote_desktop_connection_client:6.1:::::::* cpe:2.3:a:microsoft:remote_desktop_connection_client:6.0:::::::* cpe:2.3:a:microsoft:remote_desktop_connection_client:5.2:::::::*	4
Application	Microsoft Windows Xp Media Center cpe:2.3:a:microsoft:windows_xp_media_center:2005:sp3::::::	1
Os	Microsoft Windows 2003 Server cpe:2.3:o:microsoft:windows_2003_server::sp2::::::*	1
Os	Microsoft Windows 7 cpe:2.3:o:microsoft:windows_7:-:::::::* cpe:2.3:o:microsoft:windows_7:-:sp1:::ultimate_n::x86: cpe:2.3:o:microsoft:windows_7:-:sp1:::ultimate_n::x64:	3
Os	Microsoft Windows Server 2003 cpe:2.3:o:microsoft:windows_server_2003::sp2::::::*	1
Os	Microsoft Windows Server 2008 cpe:2.3:o:microsoft:windows_server_2008:r2::::::itanium: cpe:2.3:o:microsoft:windows_server_2008:r2::::::x64: cpe:2.3:o:microsoft:windows_server_2008::sp2:x64::::: cpe:2.3:o:microsoft:windows_server_2008:::itanium:::::* cpe:2.3:o:microsoft:windows_server_2008:::x64:::::* cpe:2.3:o:microsoft:windows_server_2008:::x32:::::* cpe:2.3:o:microsoft:windows_server_2008::sp2:x32::::: cpe:2.3:o:microsoft:windows_server_2008:-:sp2:itanium:::::*	8
Os	Microsoft Windows Vista cpe:2.3:o:microsoft:windows_vista::sp2::::::* cpe:2.3:o:microsoft:windows_vista::sp1::::::*	2
Os	Microsoft Windows Xp cpe:2.3:o:microsoft:windows_xp::sp2:x64::::: cpe:2.3:o:microsoft:windows_xp::sp3::::::* cpe:2.3:o:microsoft:windows_xp:-:sp2:x64:::::*	3

SAINT Exploits

Description	Link
Microsoft Office Groove Insecure Library Loading	More info here
Microsoft Windows Media Player DVR-MS File Code Execution	More info here
Microsoft Remote Desktop Connection Insecure Library Injection	More info here

OpenVAS Exploits

Date	Description
2011-03-09	Name : Microsoft Windows Media Remote Code Execution Vulnerabilities (2510030) File : nvt/secpod_ms11-015.nasl
2011-03-09	Name : Microsoft Groove Remote Code Execution Vulnerability (2494047) File : nvt/secpod_ms11-016.nasl
2011-03-09	Name : Microsoft Remote Desktop Client Remote Code Execution Vulnerability (2508062) File : nvt/secpod_ms11-017.nasl
2010-09-29	Name : Microsoft Office Products Insecure Library Loading Vulnerability File : nvt/secpod_ms_office_prdts_insecure_lib_load_vuln.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
71016	Microsoft Windows Media Player / Center .dvr-ms File Handling Arbitrary Code ... Microsoft Windows Media Player and Center contain a flaw related to the Stream Buffer Engine (SBE.dll) not properly parsing Microsoft Digital Video Recording (.dvr-ms) media files that may allow an attacker to execute arbitrary code. No further details have been provided.
71015	Microsoft Windows DirectShow Path Subversion Arbitrary DLL Injection Code Exe... Microsoft Windows DirectShow is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a .wtv, .drv-ms or .mpg file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.
71014	Microsoft Windows Remote Desktop Client Path Subversion Arbitrary DLL Injecti... Microsoft Windows is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a Remote Desktop configuration (.rdp) file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.
67484	Microsoft Office Groove Path Subversion Arbitrary DLL Injection Code Execution Microsoft Groove is prone to a flaw in the way it loads dynamic-link libraries (e.g. GroovePerfmon.dll and mso.dll). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a VCG or GTA file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.

Information Assurance Vulnerability Management (IAVM)

Date	Description
2011-03-10	IAVM : 2011-A-0031 - Multiple Vulnerabilities in Microsoft Windows Media Severity : Category II - VMSKEY : V0026088
2011-03-10	IAVM : 2011-B-0033 - Microsoft Remote Desktop Connection Client Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0026091
2011-03-10	IAVM : 2011-B-0034 - Microsoft Groove Remote Code Execution Vulnerability Severity : Category II - VMSKEY : V0026092

Snort® IPS/IDS

Date	Description
2014-01-10	Microsoft product fputlsat.dll dll-load exploit attempt RuleID : 21310 - Revision : 7 - Type : OS-WINDOWS
2014-01-10	Microsoft product request for fputlsat.dll over SMB attempt RuleID : 21309 - Revision : 7 - Type : OS-WINDOWS
2014-01-10	Microsoft Groove GroovePerfmon.dll dll-load exploit attempt RuleID : 19315 - Revision : 13 - Type : OS-WINDOWS
2014-01-10	Groove GroovePerfmon.dll dll-load exploit attempt RuleID : 19314 - Revision : 12 - Type : OS-WINDOWS
2014-01-10	Microsoft Groove mso.dll dll-load exploit attempt RuleID : 18500 - Revision : 19 - Type : OS-WINDOWS
2014-01-10	Microsoft Groove mso.dll dll-load exploit attempt RuleID : 18499 - Revision : 17 - Type : OS-WINDOWS
2014-01-10	Microsoft Media Player dvr-ms file parsing remote code execution attempt RuleID : 18498 - Revision : 16 - Type : FILE-OTHER
2014-01-10	Microsoft Windows Media Player and shell extension request for ehtrace.dll ov... RuleID : 18497 - Revision : 17 - Type : OS-WINDOWS
2014-01-10	Microsoft Windows Media Player and shell extension ehtrace.dll dll-load explo... RuleID : 18496 - Revision : 15 - Type : OS-WINDOWS
2014-01-10	Microsoft product .dll dll-load exploit attempt RuleID : 18495 - Revision : 21 - Type : OS-WINDOWS
2014-01-10	Microsoft product .dll dll-load exploit attempt RuleID : 18494 - Revision : 25 - Type : OS-WINDOWS

Nessus® Vulnerability Scanner

Date	Description
2011-03-08	Name : The version of Windows Media installed on the remote host has multiple code e... File : smb_nt_ms11-015.nasl - Type : ACT_GATHER_INFO
2011-03-08	Name : Arbitrary code can be executed on the remote host through Microsoft Office. File : smb_nt_ms11-016.nasl - Type : ACT_GATHER_INFO
2011-03-08	Name : It is possible to execute arbitrary code on the remote host through the Remot... File : smb_nt_ms11-017.nasl - Type : ACT_GATHER_INFO

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	5
CPE ID(s)	24
Saint Exploit(s)	3
osvdb(s)	4
Openvas Exploit(s)	4
IAVM(s)	3
Snort® Rule(s)	11
Nessus® Exploit(s)	3

	Related
9.3	CVE-2011-0042
9.3	CVE-2011-0032
9.3	CVE-2011-0029
9.3	CVE-2010-3146
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 4 more Alert(s)