Lucene search
MitreCVELIST:CVE-2010-1689HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-1689
2022-10-0316:21:00
mitre
www.cve.org
The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in Microsoft Windows 2000 SP4 and earlier, Windows XP SP3 and earlier, Windows Server 2003 SP2 and earlier, Windows Server 2008 SP2 and earlier, Windows Server 2008 R2, Exchange Server 2003 SP3 and earlier, Exchange Server 2007 SP2 and earlier, and Exchange Server 2010 uses predictable transaction IDs that are formed by incrementing a previous ID by 1, which makes it easier for man-in-the-middle attackers to spoof DNS responses, a different vulnerability than CVE-2010-0024 and CVE-2010-0025.
Related
cve
cve
prion
prion
Code injection
2010-05-07 18:30:00
Code injection
2010-05-07 18:30:00
Design/Logic Flaw
2010-04-14 16:00:00
nvd
nvd
nessus
nessus
securityvulns
securityvulns
Microsoft Wndows / Microsoft Exchange SMTP Service DoS
2010-05-05 00:00:00
Microsoft Security Bulletin MS10-024 - Important Vulnerabilities in Microsoft Exchange and Windows SMTP Service Could Allow Denial of Service (981832)
2010-04-16 00:00:00
[CORE-2010-0427] Windows SMTP Service DNS query Id vulnerabilities
2010-05-05 00:00:00
openvas
openvas
mskb
mskb
cvelist
cvelist
seebug
seebug
Microsoft Windows SMTP Server组件MX记录解析拒绝服务漏洞(MS10-024)
2010-04-14 00:00:00
Microsoft Windows SMTP服务可预测DNS查询ID漏洞(MS10-024)
2010-05-06 00:00:00
checkpoint_advisories
checkpoint_advisories
DNS MX Record Null Prefix (CVE-2010-0024)
2010-04-13 00:00:00