Lucene search

[email protected]CVE-2012-1852

HistoryAug 15, 2012 - 1:55 a.m.

CVE-2012-1852

2012-08-1501:55:01

CWE-119

[email protected]

web.nvd.nist.gov

124

cve-2012-1852

buffer overflow

rap

lanmanworkstation

microsoft windows xp

vulnerability

remote code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.847 High

EPSS

Percentile

98.5%

JSON

Heap-based buffer overflow in the Remote Administration Protocol (RAP) implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets, aka “Remote Administration Protocol Heap Overflow Vulnerability.”

Affected configurations

NVD

Node

microsoftwindows_xpsp3

microsoftwindows_xpMatch-sp2x64

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq*
microsoft:windows_xpmicrosoft windows xpeq-

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	*
microsoft:windows_xp	microsoft windows xp	eq	-

References

www.us-cert.gov/cas/techalerts/TA12-227A.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2012/ms12-054

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15079

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8.2 High

AI Score

Confidence

Low

0.847 High

EPSS

Percentile

98.5%

JSON

Related for CVE-2012-1852

nvd1 prion1 cvelist1 checkpoint_advisories1 openvas2 mskb1 nessus1 securityvulns1