Test Kennung:	1.3.6.1.4.1.25623.1.0.900589
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft ISA Server Privilege Escalation Vulnerability (970953)
Zusammenfassung:	This host is missing a critical security update according to; Microsoft Bulletin MS09-031.
Beschreibung:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS09-031. Vulnerability Insight: When ISA Server 2006 authentication is configured with Radius OTP (One Time Password), an unspecified error occurs when authenticating requests using the HTTP-Basic method Vulnerability Impact: Exploitation could allow remote attackers to bypass security restrictions and to execute arbitrary code with the privileges of the user. Affected Software/OS: - Microsoft Internet Security and Acceleration (ISA) 2006 and with SP1 - Microsoft Internet Security and Acceleration (ISA) 2006 with Update Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1135 Cert/CC Advisory: TA09-195A http://www.us-cert.gov/cas/techalerts/TA09-195A.html Microsoft Security Bulletin: MS09-031 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-031 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5649 http://www.securitytracker.com/id?1022547 http://secunia.com/advisories/35784 http://www.vupen.com/english/advisories/2009/1889
Copyright	Copyright (C) 2009 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.