Описание
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
FAQ
What kind of security feature could be bypassed by successfully exploiting this vulnerability?
This vulnerability could allow an attacker to bypass Extended Protection for Authentication provided by SPN target name validation.
Обновления
| Продукт | Статья | Обновление |
|---|---|---|
| Windows 7 for 32-bit Systems Service Pack 1 | ||
| Windows 7 for x64-based Systems Service Pack 1 | ||
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | ||
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | ||
| Windows Server 2012 | ||
| Windows Server 2012 (Server Core installation) | ||
| Windows 8.1 for 32-bit systems | ||
| Windows 8.1 for x64-based systems | ||
| Windows Server 2012 R2 | ||
| Windows RT 8.1 |
Показывать по
10
Возможность эксплуатации
Publicly Disclosed
No
Exploited
No
Latest Software Release
Exploitation Less Likely
Older Software Release
Exploitation Less Likely
DOS
N/A
EPSS
Процентиль: 74%
0.00859
Низкий
6.5 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.5
nvd
больше 3 лет назад
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
CVSS3: 6.5
github
около 3 лет назад
Windows Remote Procedure Call Runtime Security Feature Bypass Vulnerability
CVSS3: 6.5
fstec
больше 3 лет назад
Уязвимость операционной системы Windows , связанная с ошибками в настройках безопасности, позволяющая нарушителю обойти механизм защиты
EPSS
Процентиль: 74%
0.00859
Низкий
6.5 Medium
CVSS3