Microsoft Windows XML Digital Signatures CVE-2013-3869 Remote Denial of Service Vulnerability

2013-11-1200:00:00

Symantec Security Response

www.symantec.com

0.122 Low

EPSS

Percentile

94.8%

JSON

Description

Microsoft Windows is prone to a remote denial-of-service vulnerability because it fails sanitize user-supplied input. An attacker can exploit this issue to cause the affected application to stop responding, denying service to legitimate users.

Technologies Affected

Avaya CallPilot 4.0
Avaya CallPilot 4.0.1
Avaya CallPilot 5.0
Avaya CallPilot 5.0.1
Avaya Communication Server 1000 Telephony Manager 3.0
Avaya Communication Server 1000 Telephony Manager 3.0.1
Avaya Communication Server 1000 Telephony Manager 4.0
Avaya Communication Server 1000 Telephony Manager 4.0.1
Avaya Conferencing Standard Edition 6.0
Avaya Conferencing Standard Edition 6.0 SP1
Avaya Conferencing Standard Edition 6.0.1
Avaya Conferencing Standard Edition 7.0
Avaya Meeting Exchange - Client Registration Server 5.0
Avaya Meeting Exchange - Client Registration Server 5.0.1
Avaya Meeting Exchange - Client Registration Server 5.2
Avaya Meeting Exchange - Client Registration Server 5.2.1
Avaya Meeting Exchange - Client Registration Server 6.0
Avaya Meeting Exchange - Client Registration Server 6.2
Avaya Meeting Exchange - Recording Server 5.0
Avaya Meeting Exchange - Recording Server 5.0.1
Avaya Meeting Exchange - Recording Server 5.2
Avaya Meeting Exchange - Recording Server 5.2.1
Avaya Meeting Exchange - Recording Server 6.0
Avaya Meeting Exchange - Recording Server 6.2
Avaya Meeting Exchange - Streaming Server 5.0
Avaya Meeting Exchange - Streaming Server 5.0
Avaya Meeting Exchange - Streaming Server 5.0.1
Avaya Meeting Exchange - Streaming Server 5.2
Avaya Meeting Exchange - Streaming Server 5.2.1
Avaya Meeting Exchange - Streaming Server 6.0
Avaya Meeting Exchange - Streaming Server 6.2
Avaya Meeting Exchange - Web Conferencing Server 5.0
Avaya Meeting Exchange - Web Conferencing Server 5.0.1
Avaya Meeting Exchange - Web Conferencing Server 5.2
Avaya Meeting Exchange - Web Conferencing Server 5.2.1
Avaya Meeting Exchange - Web Conferencing Server 6.0
Avaya Meeting Exchange - Web Conferencing Server 6.2
Avaya Meeting Exchange - Webportal 5.0
Avaya Meeting Exchange - Webportal 5.0.1
Avaya Meeting Exchange - Webportal 5.2
Avaya Meeting Exchange - Webportal 5.2.1
Avaya Meeting Exchange - Webportal 6.0
Avaya Meeting Exchange - Webportal 6.2
Avaya Messaging Application Server 4
Avaya Messaging Application Server 5
Avaya Messaging Application Server 5.0
Avaya Messaging Application Server 5.0.1
Avaya Messaging Application Server 5.2
Avaya Messaging Application Server 5.2.1
Avaya Messaging Application Server MM 1.1
Avaya Messaging Application Server MM 2.0
Avaya Messaging Application Server MM 3.0
Avaya Messaging Application Server MM 3.1
Microsoft Windows 7 for 32-bit Systems SP1
Microsoft Windows 7 for x64-based Systems SP1
Microsoft Windows 8 for 32-bit Systems
Microsoft Windows 8 for 64-bit Systems
Microsoft Windows 8.1 for 32-bit Systems
Microsoft Windows 8.1 for x64-based Systems
Microsoft Windows RT 8.1
Microsoft Windows RT
Microsoft Windows Server 2003 Itanium SP2
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2012
Microsoft Windows Server 2012 R2
Microsoft Windows Vista SP2
Microsoft Windows Vista x64 Edition SP2
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows XP Service Pack 3

Recommendations

Block external access at the network boundary, unless external parties require service.
Filter access to the affected computer at the network boundary if global access isn’t required. Restricting access to only trusted computers and networks might greatly reduce the likelihood of exploits.

Run all software as a nonprivileged user with minimal access rights.
To mitigate the potential impact of a successful exploit, run the affected application as a user with minimal access rights.

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to monitor network traffic for anomalous or suspicious activity. Monitor logs generated by NIDS and by the server itself for evidence of attacks against the server.

Updates are available. Please see the references or vendor advisory for more information.

CPENameOperatorVersion
microsoft windowseq8.1 for 32-bit Systems 
microsoft windowseq7 for x64-based Systems SP1 
avaya communication servereq1000 Telephony Manager 4.0 
avaya meeting exchange - web conferencing servereq5.0.1 
avaya meeting exchange - client registration servereq5.2 
avaya messaging application servereq5.0.1 
avaya conferencing standard editioneq6.0.1 
avaya messaging application servereq5 
avaya meeting exchange - web conferencing servereq6.0 
microsoft windowseq7 for 32-bit Systems SP1 

Name	Operator	Version
microsoft windows	eq	8.1 for 32-bit Systems
microsoft windows	eq	7 for x64-based Systems SP1
avaya communication server	eq	1000 Telephony Manager 4.0
avaya meeting exchange - web conferencing server	eq	5.0.1
avaya meeting exchange - client registration server	eq	5.2
avaya messaging application server	eq	5.0.1
avaya conferencing standard edition	eq	6.0.1
avaya messaging application server	eq	5
avaya meeting exchange - web conferencing server	eq	6.0
microsoft windows	eq	7 for 32-bit Systems SP1

Rows per page:

1-10 of 711

0.122 Low

EPSS

Percentile

94.8%

JSON

Related for SMNTC-63561