Test ID:	1.3.6.1.4.1.25623.1.0.902487
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows Active Directory LDAPS Authentication Bypass Vulnerability (2630837)
Summary:	This host is missing a critical security update according to; Microsoft Bulletin MS11-086.
Description:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS11-086. Vulnerability Insight: The flaw is due to an error in Active Directory when configured to use LDAP over SSL. It fails to validate the revocation status of an SSL certificate against the CRL (Certificate Revocation List) associated with the domain account. This can be exploited to authenticate to the Active Directory domain using a revoked certificate. Vulnerability Impact: Successful exploitation will allow the remote attackers to use revoked certificate to authenticate to the Active Directory domain and gain access to network resources or run code under the privileges of a specific authorized user with which the certificate is associated. Affected Software/OS: - Microsoft Windows 7 Service Pack 1 and prior - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows Vista Service Pack 2 and prior - Microsoft Windows Server 2003 Service Pack 2 and prior - Microsoft Windows Server 2008 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2014 Microsoft Security Bulletin: MS11-086 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-086 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13278 http://www.securitytracker.com/id?1026294
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.