CVE-2006-2380

Опубликовано: 13 июн. 2006

Источник: nvd

CVSS2: 4.3

EPSS Средний

Описание

Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the "RPC Mutual Authentication Vulnerability."

Ссылки

http://secunia.com/advisories/20637
Patch
Vendor Advisory
http://securitytracker.com/id?1016289
Patch
http://www.osvdb.org/26438
http://www.securityfocus.com/bid/18389
Patch
http://www.vupen.com/english/advisories/2006/2328
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-031
https://exchange.xforce.ibmcloud.com/vulnerabilities/26836
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1763
http://secunia.com/advisories/20637
Patch
Vendor Advisory
http://securitytracker.com/id?1016289
Patch
http://www.osvdb.org/26438
http://www.securityfocus.com/bid/18389
Patch
http://www.vupen.com/english/advisories/2006/2328
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-031
https://exchange.xforce.ibmcloud.com/vulnerabilities/26836
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1763

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

EPSS

Процентиль: 95%

0.19638

Средний

4.3 Medium

CVSS2

Дефекты

CWE-287

Связанные уязвимости

GHSA-jh59-wj27-m7p6

github

почти 4 года назад