Executive Summary

Summary
Title Automatic DNS registration and proxy autodiscovery allow spoofing of network services
Informations
NameVU#598349First vendor Publication2018-09-05
VendorVU-CERTLast vendor Modification2018-10-23
Severity (Vendor) N/ARevisionM

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:C/I:C/A:C)
Cvss Base Score7.6Attack RangeNetwork
Cvss Impact Score10Attack ComplexityHigh
Cvss Expoit Score4.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Original Source

Url : http://www.kb.cert.org/vuls/id/598349

CWE : Common Weakness Enumeration

%idName
86 %CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
14 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Application3
Os5
Os2
Os2
Os2
Os1
Os4
Os3
Os2

Snort® IPS/IDS

DateDescription
2018-01-11Microsoft Internet Explorer Array out of bounds write attempt
RuleID : 45149 - Revision : 3 - Type : BROWSER-IE
2018-01-11Microsoft Internet Explorer Array out of bounds write attempt
RuleID : 45148 - Revision : 3 - Type : BROWSER-IE
2018-01-11Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 45147 - Revision : 2 - Type : BROWSER-IE
2018-01-11Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 45146 - Revision : 2 - Type : BROWSER-IE
2018-01-11Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 45139 - Revision : 2 - Type : BROWSER-IE
2018-01-11Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 45138 - Revision : 2 - Type : BROWSER-IE
2017-12-13Microsoft Edge memory corruption exploitation attempt
RuleID : 44832 - Revision : 2 - Type : BROWSER-IE
2017-12-13Microsoft Edge memory corruption exploitation attempt
RuleID : 44831 - Revision : 2 - Type : BROWSER-IE
2017-11-07Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 44511 - Revision : 2 - Type : BROWSER-IE
2017-11-07Microsoft Internet Explorer scripting engine memory corruption attempt
RuleID : 44510 - Revision : 2 - Type : BROWSER-IE
2017-11-07scripting engine memory corruption vulnerability attempt
RuleID : 44509 - Revision : 2 - Type : BROWSER-IE
2017-11-07scripting engine memory corruption vulnerability attempt
RuleID : 44508 - Revision : 2 - Type : BROWSER-IE

Nessus® Vulnerability Scanner

DateDescription
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053578.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053579.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053580.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4053581.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054517.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054518.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054519.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_dec_4054520.nasl - Type : ACT_GATHER_INFO
2017-12-12Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_dec_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_nov_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-30Name : The Internet Explorer installation on the remote host is affected by multiple...
File : smb_nt_ms17_oct_internet_explorer.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048952.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048953.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048954.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048955.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048956.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048957.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048958.nasl - Type : ACT_GATHER_INFO
2017-11-14Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_nov_4048959.nasl - Type : ACT_GATHER_INFO
2017-11-03Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4042895.nasl - Type : ACT_GATHER_INFO
2017-10-12Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_win2008.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041676.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041681.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041689.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041690.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041691.nasl - Type : ACT_GATHER_INFO
2017-10-10Name : The remote Windows host is affected by multiple vulnerabilities.
File : smb_nt_ms17_oct_4041693.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2018-10-23 21:18:42
  • Multiple Updates
2018-10-01 21:19:04
  • Multiple Updates
2018-09-19 17:18:58
  • Multiple Updates
2018-09-12 17:18:28
  • Multiple Updates
2018-09-11 21:19:11
  • Multiple Updates
2018-09-08 17:20:41
  • Multiple Updates
2018-09-05 17:18:43
  • First insertion