CVE-2013-3876

DirectAccess in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify server X.509 certificates, which...

Microsoft security advisory: Vulnerability in IPsec could allow security feature bypass

Microsoft security advisory: Vulnerability in IPsec could allow security feature bypass INTRODUCTION Microsoft has released a Microsoft security advisory about this issue for IT professionals. The security advisory contains additional security-related information. To view the security advisory, g...

Update adds BPA rules for DirectAccess in Windows Server 2012 R2 or Windows Server 2012

Update adds BPA rules for DirectAccess in Windows Server 2012 R2 or Windows Server 2012 Introduction This article describes an update that adds new Best Practices Analyzer BPA rules. The rules are for DirectAccess on the servers that are running Windows Server 2012 R2 or Windows Server 2012. The...

DirectAccess client receives incorrect response to reverse lookup query from a Windows Server 2012 R2-based DNS64 server

DirectAccess client receives incorrect response to reverse lookup query from a Windows Server 2012 R2-based DNS64 server This article describes an issue in which client computers receive incorrect response to a reverse lookup query PTR from a Windows Server 2012 R2-based DNS64 server. Before you...

Intercept SaaS Services with the Akamai EAA Client

I was quite fortunate to visit Tokyo for the first time last year, and it was an unforgettable experience to explore all the sights and sounds around the Ginza district and to interact with the very friendly Japanese people. It wasn't all play, though -- and I had to get some real work done as...

ip-https-discover NSE Script

Checks if the IP over HTTPS IP-HTTPS Tunneling Protocol 1 is supported. IP-HTTPS sends Teredo related IPv6 packets over an IPv4-based HTTPS session. This indicates that Microsoft DirectAccess 2, which allows remote clients to access intranet resources on a domain basis, is supported. Windows...

CVE-2013-3876

DirectAccess in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify server X.509 certificates, which...

CVE-2013-3876

CVE-2013-3876 concerns DirectAccess in Windows platforms where the client/server DirectAccess component fails to properly verify server X.509 certificates. This enables a man-in-the-middle to impersonate a legitimate server and potentially read encrypted domain credentials when a crafted certific...

CVE-2013-3876

DirectAccess in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify server X.509 certificates, which...

Microsoft DirectAccess Security Advisory (2862152)

This host is missing an important security update according to Microsoft advisory 2862152. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

MS KB2862152: Vulnerability in DirectAccess Could Allow Security Feature Bypass

The remote host is affected by a security feature vulnerability due to improper verification of server X.509 certificates by DirectAccess. A man-in-the-middle attacker, by using a server with a crafted certificate installed, can exploit this flaw to pose as a legitimate server to a targeted clien...

Microsoft Windows DirectAccess CVE-2013-3876 Security Bypass Vulnerability

Description Microsoft Windows DirectAccess is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and impersonate a legitimate server to perform man-in-the-middle attacks. Successfully exploiting this issue allows attackers to obtai...

Microsoft DirectAccess ICMP Denial of Service (MS13-064; CVE-2013-3182)

A denial of service vulnerability has been reported in Windows 2012 server...

Microsoft Windows multiple security vulnerabilities

Buffer overflow on OpenType and TrueType fonts parsing, memory corruption on filname handling, DirectPlay buffer overflow, DirectAccess IP-HTTPS insufficient certificate check...

MS12-083: Vulnerability in IP-HTTPS Component Could Allow Security Feature Bypass (2765809)

A security feature bypass vulnerability exists in Windows due to the way the IP-HTTPS Component handles certificates. The vulnerability could allow security feature bypass if an attacker presents a revoked certificate to an IP-HTTPS server commonly used in Microsoft DirectAccess deployments. To...

Microsoft Forefront Threat Management Gateway (TMG)防火墙客户端内存破坏漏洞

Bugtraq ID: 48181 CVE ID：CVE-2011-1889 Microsoft Forefront Threat Management Gateway可以安装在DirectAccess服务器上，提供额外保护和其他Forefront TMG功能。 NSPLookupServiceNext函数存在一个边界错误，提交通过TMG防火墙客户端的特殊请求可破坏内存，成功利用漏洞可执行任意代码。 Microsoft Forefront Threat Management Gateway 2010 Client 厂商解决方案 用户可参考如下供应商提供的安全公告获得补丁信息：...

Microsoft Frorefront UAG Redirection Spoofing (MS10-089; CVE-2010-2732)

Microsoft Forefront Unified Access Gateway UAG is a virtual private networking solution that provides secure remote access to corporate networks for remote employees and business partners. It incorporates various remote access technologies such as VPN, SSL-VPN, DirectAccess, and Remote Desktop...

Windows 7 Security Story May Appeal to Enterprises

Microsoft Windows 7 is on its way tomorrow, and it is bringing with it a set of security features Microsoft hopes will appeal to enterprises. The Windows 7 security story has three main chapters that have received a fair amount of attention – DirectAccess, BitLocker To Go and AppLocker. With thes...