Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4037

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-4037
Last Modified 30 Oct 2012 11:03:33
Published 12 Nov 2008 06:30:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-4037

Summary

Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability." NOTE: some reliable sources report that this vulnerability exists because of an insufficient fix for CVE-2000-0834.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Server 2003

  • Microsoft Windows Server 2008

  • Microsoft Windows Vista

  • Microsoft Windows Xp


References

CERT - TA08-316A

BID - 7385

MS - MS08-068

MISC - http://www.xfocus.net/articles/200305/smbrelay.html

VUPEN - ADV-2008-3110

MISC - http://www.veracode.com/blog/2008/11/microsoft-fixes-8-year-old-design-flaw-in-smb/

MISC - http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch.README

MISC - http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch

MISC - http://www.networkworld.com/news/2008/111208-microsoft-seven-year-security-patch.html

MILW0RM - 7125

SECTRACK - 1021163

SECUNIA - 32633

OSVDB - 49736

HP - SSRT080164

HP - HPSBST02386


Last Updated: 27 May 2016 10:55:04