CVE-2017-0129

Опубликовано: 17 мар. 2017

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Microsoft Lync for Mac 2011 fails to properly validate certificates, allowing remote attackers to alter server-client communications, aka "Microsoft Lync for Mac Certificate Validation Vulnerability."

Ссылки

http://www.securityfocus.com/bid/96752
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038020
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0129
Patch
Vendor Advisory
http://www.securityfocus.com/bid/96752
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1038020
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-0129
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:lync_for_mac:2011:*:*:*:*:*:*:*

EPSS

Процентиль: 82%

0.01738

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-295

Связанные уязвимости

CVE-2017-0129

msrc

больше 8 лет назад

Microsoft Lync for Mac Certificate Validation Vulnerability

GHSA-p3wq-v5cw-mp2f