ID de Prueba:	1.3.6.1.4.1.25623.1.0.900909
Categoría:	Windows : Microsoft Bulletins
Título:	Telnet NTLM Credential Reflection Authentication Bypass Vulnerability (960859)
Resumen:	This host is missing a critical security update according to; Microsoft Bulletin MS09-042.
Descripción:	Summary: This host is missing a critical security update according to Microsoft Bulletin MS09-042. Vulnerability Insight: An error in the Telnet service when handling NTLM authentication can be exploited to reflect the user credentials and gain unauthorized access to the affected system. Vulnerability Impact: Successful exploitation will allow attackers to execute arbitrary code and completely compromise the affected computer. Affected Software/OS: - Microsoft Windows 2K Service Pack 4 and prior - Microsoft Windows XP Service Pack 3 and prior - Microsoft Windows 2003 Service Pack 2 and prior - Microsoft Vista Service Pack 2 and prior - Microsoft Windows 2008 Service Pack 2 and prior Solution: The vendor has released updates. Please see the references for more information. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1930 BugTraq ID: 35993 http://www.securityfocus.com/bid/35993 Cert/CC Advisory: TA09-223A http://www.us-cert.gov/cas/techalerts/TA09-223A.html Microsoft Security Bulletin: MS09-042 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-042 http://osvdb.org/56904 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6302 http://securitytracker.com/id?1022716 http://secunia.com/advisories/36222 http://www.vupen.com/english/advisories/2009/2237
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.