9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.283 Low
EPSS
Percentile
96.4%
Added: 05/04/2009
CVE: CVE-2009-0550
BID: 34439
OSVDB: 53619
The Windows Internet (WinINet) application programming interface (API) provides applications with an implementation of standard protocols such as FTP and HTTP.
An NTLM credential reflection vulnerability allows a remote web site to re-use a userโs authentication response to gain unauthorized access to the userโs system.
Apply the patch referenced in Microsoft Security Bulletin 09-014.
<http://www.microsoft.com/technet/security/Bulletin/MS09-014.mspx>
Exploit works on Windows XP and requires a user to load the exploit page in Internet Explorer. In some cases, the user will also need to provide authentication credentials in order to load the page.
If successful, this exploit will disable the firewall on the target.
Windows XP