CVE-2013-3876 in WindowsИнформация

Сводка

по MITRE

DirectAccess in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not properly verify server X.509 certificates, which allows man-in-the-middle attackers to spoof servers and read encrypted domain credentials via a crafted certificate.

Once again VulDB remains the best source for vulnerability data.

Резервировать

03.06.2013

Раскрытие

17.11.2013

Модерация

принято

Вход

VDB-11167

EPSS

0.05218

KEV

Нет

Деятельности

Очень низкий

Источники

Want to know what is going to be exploited?

We predict KEV entries!