 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.10835 |
| Categoría: | Windows : Microsoft Bulletins |
| Título: | Microsoft Windows XP Multiple Vulnerabilities (MS01-059, Q315000) |
| Resumen: | Microsoft Windows XP is prone to multiple vulnerabilities. |
| Descripción: | Summary: Microsoft Windows XP is prone to multiple vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2001-0876: Buffer overflow in Universal Plug and Play (UPnP) allows remote attackers to execute arbitrary code via a NOTIFY directive with a long Location URL. - CVE-2001-0877: Universal Plug and Play (UPnP) allows remote attackers to cause a denial of service via a spoofed SSDP advertisement that causes the client to connect to a service on another machine that generates a large amount of traffic (e.g., chargen), or via a spoofed SSDP announcement to broadcast or multicast addresses, which could cause all UPnP clients to send traffic to a single target system. Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2001-0876 BugTraq ID: 3723 http://www.securityfocus.com/bid/3723 Bugtraq: 20011220 Multiple Remote Windows XP/ME/98 Vulnerabilities (Google Search) http://marc.info/?l=bugtraq&m=100887440810532&w=2 http://www.cert.org/advisories/CA-2001-37.html CERT/CC vulnerability note: VU#951555 http://www.kb.cert.org/vuls/id/951555 Computer Incident Advisory Center Bulletin: M-030 http://www.ciac.org/ciac/bulletins/m-030.shtml Microsoft Security Bulletin: MS01-059 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-059 http://marc.info/?l=ntbugtraq&m=100887271006313&w=2 XForce ISS Database: win-upnp-notify-bo(7721) https://exchange.xforce.ibmcloud.com/vulnerabilities/7721 Common Vulnerability Exposure (CVE) ID: CVE-2001-0877 BugTraq ID: 3724 http://www.securityfocus.com/bid/3724 Bugtraq: 20020109 UPNP Denial of Service (Google Search) http://www.securityfocus.com/archive/1/249238 CERT/CC vulnerability note: VU#411059 http://www.kb.cert.org/vuls/id/411059 XForce ISS Database: win-upnp-udp-dos(7722) https://exchange.xforce.ibmcloud.com/vulnerabilities/7722 |
| Copyright | Copyright (C) 2002 Michael Scheidell |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |