4 matches found
Microsoft Windows SMB Server NTLM Multiple Vulnerabilities (971468)
This host is missing a critical security update according to Microsoft Bulletin MS10-012. OpenVAS Vulnerability Test $Id: secpodms10-012-remote.nasl 11684 2010-10-15 16:45:43Z oct$ Microsoft Windows SMB Server NTLM Multiple Vulnerabilities 971468 Authors: Antu Sanadi Chandrashekhar B Copyright:...
Microsoft Windows - NTLM Weak Nonce (MS10-012)
Windows SMB NTLM Authentication Weak Nonce Vulnerability Security Advisory Hernan Ochoa [email protected] - Agustin Azubel [email protected] Title: Windows SMB NTLM Authentication Weak Nonce Vulnerability Advisory ID: OCHOA-2010-0209 Advisory URL:...
CVE-2010-0231
CVE-2010-0231 involves the SMB server’s NTLM authentication on Windows 2000/XP/2003/Vista/Server 2008/7 where insufficient entropy in server-generated challenges (duplicate NTLM nonces) allows remote attackers to access files and SMB resources after many authentication requests. Root cause: weak ...
Microsoft SMB NTLM Authentication Lack of Entropy (MS10-012; CVE-2010-0231)
The SMB Protocol is a network file sharing protocol that is implemented in Microsoft Windows. An elevation of privilege vulnerability has been reported in the way that Microsoft Server Message Block SMB Protocol software handles authentication attempts. The vulnerability is due to a lack of...