CVE-2007-3038

Sažetak

The Teredo interface in Microsoft Windows Vista and Vista x64 Edition does not properly handle certain network traffic, which allows remote attackers to bypass firewall blocking rules and obtain sensitive information via crafted IPv6 traffic, aka "Windows Vista Firewall Blocking Rule Information Disclosure Vulnerability."

Reference

http://archive.cert.uni-stuttgart.de/bugtraq/2007/07/msg00254.html
http://osvdb.org/35952
http://secunia.com/advisories/26001
http://www.kb.cert.org/vuls/id/101321
http://www.securityfocus.com/archive/1/473294/100/0/threaded
http://www.securityfocus.com/bid/24779
http://www.securitytracker.com/id?1018354
http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-005.txt
http://www.us-cert.gov/cas/techalerts/TA07-191A.html
http://www.vupen.com/english/advisories/2007/2480
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-038
https://exchange.xforce.ibmcloud.com/vulnerabilities/35322
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1884

CVSS

Base:	7.8
Impact:	6.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:N/A:N

Zadnje važnije ažuriranje

16-10-2018 - 16:47

Objavljeno

10-07-2007 - 22:30