Lucene search
K

5 matches found

Prion
Prion
added 2016/04/25 12:59 a.m.40 views

Design/Logic Flaw

The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and 4.4.x before 4.4.2, when a domain controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted applicatio...

4.3CVSS7.4AI score0.18171EPSS
Exploits2References41Affected Software2
CVE
CVE
added 2016/04/25 12:0 a.m.163 views

CVE-2016-2111

The NETLOGON vulnerability (CVE-2016-2111) affects Samba 3.x and 4.x prior to: 4.2.11, 4.3.x prior to 4.3.8, and 4.4.x prior to 4.4.2. When a domain controller is configured, remote attackers can spoof the computer name of a secure channel endpoint and obtain sensitive session information by craf...

6.3CVSS6.9AI score0.02902EPSS
Exploits0References41Affected Software1
CVE
CVE
added 2015/03/11 10:0 a.m.147 views

CVE-2015-0005

CVE-2015-0005 (NETLOGON Spoofing Vulnerability) affects Windows as a domain controller feature: the NETLOGON service on Windows Server 2003 SP2, 2008 SP2 and R2 SP1, and Windows Server 2012 Gold/R2, when configured as a Domain Controller, can be abused by remote attackers to spoof the computer na...

4.3CVSS6.3AI score0.18171EPSS
Exploits2References6Affected Software3
OpenVAS
OpenVAS
added 2015/03/11 12:0 a.m.93 views

Microsoft Windows NETLOGON Spoofing Vulnerability (3002657)

This host is missing an important security update according to Microsoft Bulletin MS15-027. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS6.8AI score0.18171EPSS
Exploits2References2
Symantec
Symantec
added 2015/03/10 12:0 a.m.65 views

Microsoft Windows 'Netlogon' RPC CVE-2015-0005 Spoofing Vulnerability

Description Microsoft Windows is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. Attackers can exploit this issue to spoof and impersonate a legitimate user. Other attacks are also possible. Technologies Affected Avaya CallPilot 4.0 Avaya CallPilot 4.0.1...

4.3CVSS0.3AI score0.18171EPSS
Exploits2Affected Software7
Rows per page
Query Builder