Executive Summary
| Summary | |
|---|---|
| Title | Automatic DNS registration and proxy autodiscovery allow spoofing of network services |
| Informations | |||
|---|---|---|---|
| Name | VU#598349 | First vendor Publication | 2018-09-05 |
| Vendor | VU-CERT | Last vendor Modification | 2018-10-23 |
| Severity (Vendor) | N/A | Revision | M |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:H/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 7.6 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | High |
| Cvss Expoit Score | 4.9 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| |
Original Source
| Url : http://www.kb.cert.org/vuls/id/598349 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 86 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
| 14 % | CWE-200 | Information Exposure |
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 4 |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2018-01-11 | Microsoft Internet Explorer Array out of bounds write attempt RuleID : 45149 - Revision : 3 - Type : BROWSER-IE |
| 2018-01-11 | Microsoft Internet Explorer Array out of bounds write attempt RuleID : 45148 - Revision : 4 - Type : BROWSER-IE |
| 2018-01-11 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 45147 - Revision : 2 - Type : BROWSER-IE |
| 2018-01-11 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 45146 - Revision : 2 - Type : BROWSER-IE |
| 2018-01-11 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 45139 - Revision : 2 - Type : BROWSER-IE |
| 2018-01-11 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 45138 - Revision : 2 - Type : BROWSER-IE |
| 2017-12-13 | Microsoft Edge memory corruption exploitation attempt RuleID : 44832 - Revision : 2 - Type : BROWSER-IE |
| 2017-12-13 | Microsoft Edge memory corruption exploitation attempt RuleID : 44831 - Revision : 2 - Type : BROWSER-IE |
| 2017-11-07 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 44511 - Revision : 2 - Type : BROWSER-IE |
| 2017-11-07 | Microsoft Internet Explorer scripting engine memory corruption attempt RuleID : 44510 - Revision : 2 - Type : BROWSER-IE |
| 2017-11-07 | scripting engine memory corruption vulnerability attempt RuleID : 44509 - Revision : 2 - Type : BROWSER-IE |
| 2017-11-07 | scripting engine memory corruption vulnerability attempt RuleID : 44508 - Revision : 2 - Type : BROWSER-IE |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2017-12-12 | Name : The Internet Explorer installation on the remote host is affected by multiple... File : smb_nt_ms17_dec_internet_explorer.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4054520.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4054519.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4054518.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4054517.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4053581.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4053580.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4053579.nasl - Type : ACT_GATHER_INFO |
| 2017-12-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_dec_4053578.nasl - Type : ACT_GATHER_INFO |
| 2017-11-30 | Name : The Internet Explorer installation on the remote host is affected by multiple... File : smb_nt_ms17_oct_internet_explorer.nasl - Type : ACT_GATHER_INFO |
| 2017-11-30 | Name : The Internet Explorer installation on the remote host is affected by multiple... File : smb_nt_ms17_nov_internet_explorer.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048957.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048959.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048958.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048956.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048955.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048954.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048953.nasl - Type : ACT_GATHER_INFO |
| 2017-11-14 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_nov_4048952.nasl - Type : ACT_GATHER_INFO |
| 2017-11-03 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4042895.nasl - Type : ACT_GATHER_INFO |
| 2017-10-12 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_win2008.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041676.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041693.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041691.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041690.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041689.nasl - Type : ACT_GATHER_INFO |
| 2017-10-10 | Name : The remote Windows host is affected by multiple vulnerabilities. File : smb_nt_ms17_oct_4041681.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2018-10-23 21:18:42 |
|
| 2018-10-01 21:19:04 |
|
| 2018-09-19 17:18:58 |
|
| 2018-09-12 17:18:28 |
|
| 2018-09-11 21:19:11 |
|
| 2018-09-08 17:20:41 |
|
| 2018-09-05 17:18:43 |
|
