Windows : Microsoft Bulletins : Microsoft Windows Kerberos Checksum Remote Privilege Escalation Vulnerability (3011780)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 146377 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.804799

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft Windows Kerberos Checksum Remote Privilege Escalation Vulnerability (3011780)

Zusammenfassung: This host is missing an important security; update according to Microsoft Bulletin MS14-068.

Beschreibung: Summary:
This host is missing an important security
update according to Microsoft Bulletin MS14-068.

Vulnerability Insight:
Vulnerability exists when Microsoft Kerberos
KDC implementations fail to properly validate signatures.

Vulnerability Impact:
Successful exploitation will allow remote
attackers to escalate the privileges.

Affected Software/OS:
- Microsoft Windows 8 x32/x64

- Microsoft Windows Server 2012/R2

- Microsoft Windows 8.1 x32/x64

- Microsoft Windows 7 x32/x64 Service Pack 1 and prior

- Microsoft Windows Vista x32/x64 Service Pack 2 and prior

- Microsoft Windows 2003 x32/x64 Service Pack 2 and prior

- Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior

- Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior

Solution:
The vendor has released updates. Please see the references for more information.

CVSS Score:
9.0

CVSS Vector:
AV:N/AC:L/Au:S/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2014-6324
BugTraq ID: 70958
http://www.securityfocus.com/bid/70958
Cert/CC Advisory: TA14-323A
http://www.us-cert.gov/ncas/alerts/TA14-323A
HPdes Security Advisory: HPSBMU03224
http://marc.info/?l=bugtraq&m=142350249315918&w=2
HPdes Security Advisory: SSRT101864
Microsoft Security Bulletin: MS14-068
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-068
http://www.securitytracker.com/id/1031237
http://secunia.com/advisories/62556

Copyright Copyright (C) 2014 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.804799
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft Windows Kerberos Checksum Remote Privilege Escalation Vulnerability (3011780)
Zusammenfassung:	This host is missing an important security; update according to Microsoft Bulletin MS14-068.
Beschreibung:	Summary: This host is missing an important security update according to Microsoft Bulletin MS14-068. Vulnerability Insight: Vulnerability exists when Microsoft Kerberos KDC implementations fail to properly validate signatures. Vulnerability Impact: Successful exploitation will allow remote attackers to escalate the privileges. Affected Software/OS: - Microsoft Windows 8 x32/x64 - Microsoft Windows Server 2012/R2 - Microsoft Windows 8.1 x32/x64 - Microsoft Windows 7 x32/x64 Service Pack 1 and prior - Microsoft Windows Vista x32/x64 Service Pack 2 and prior - Microsoft Windows 2003 x32/x64 Service Pack 2 and prior - Microsoft Windows Server 2008 R2 x64 Service Pack 1 and prior - Microsoft Windows Server 2008 x32/x64 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-6324 BugTraq ID: 70958 http://www.securityfocus.com/bid/70958 Cert/CC Advisory: TA14-323A http://www.us-cert.gov/ncas/alerts/TA14-323A HPdes Security Advisory: HPSBMU03224 http://marc.info/?l=bugtraq&m=142350249315918&w=2 HPdes Security Advisory: SSRT101864 Microsoft Security Bulletin: MS14-068 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2014/ms14-068 http://www.securitytracker.com/id/1031237 http://secunia.com/advisories/62556
Copyright	Copyright (C) 2014 Greenbone AG