[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248268

 
 

909

 
 

195051

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-4037Date: (C)2008-11-12   (M)2023-12-22


Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability." NOTE: some reliable sources report that this vulnerability exists because of an insufficient fix for CVE-2000-0834.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
SECTRACK-1021163
SECUNIA-32633
OSVDB-49736
EXPLOIT-DB-7125
BID-7385
ADV-2008-3110
MS08-068
SSRT080164
TA08-316A
http://www.networkworld.com/news/2008/111208-microsoft-seven-year-security-patch.html
http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch
http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch.README
http://www.veracode.com/blog/2008/11/microsoft-fixes-8-year-old-design-flaw-in-smb/
http://www.xfocus.net/articles/200305/smbrelay.html
oval:org.mitre.oval:def:6012

CWE    1
CWE-287
OVAL    2
oval:org.secpod.oval:def:2607
oval:org.mitre.oval:def:6012

© SecPod Technologies