CVE-2011-0040
published 2011-02-09CVE-2011-0040: The server in Microsoft Active Directory on Windows Server 2003 SP2 does not properly handle an update request for a service principal name (SPN), which allows…
PriorityP335medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
22.76%
97.4th percentile
The server in Microsoft Active Directory on Windows Server 2003 SP2 does not properly handle an update request for a service principal name (SPN), which allows remote attackers to cause a denial of service (authentication downgrade or outage) via a crafted request that triggers name collisions, aka "Active Directory SPN Validation Vulnerability."
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2010-1679 dpkg: directory traversal flaw allows for arbitrary file creation
bugzilla·2011-01-12·CVSS 6.8
CVE-2010-1679 [MEDIUM] CVE-2010-1679 dpkg: directory traversal flaw allows for arbitrary file creation
CVE-2010-1679 dpkg: directory traversal flaw allows for arbitrary file creation
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-1679 to
the following vulnerability:
Name: CVE-2010-1679
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1679
Assigned: 20100430
Reference: DEBIAN:DSA-2142
Reference: URL: http://www.debian.org/security/2011/dsa-2142
Reference: UBUNTU:USN-1038-1
Reference: URL: http://www.ubuntu.com/usn/USN-1038-1
Reference: SECUNIA:42826
Reference: URL: http://secunia.com/advisories/42826
Reference: SECUNIA:42831
Reference: URL: http://secunia.com/advisories/42831
Reference: VUPEN:ADV-2011-0040
Reference: URL: http://www.vupen.com/english/advisories/2011/0040
Reference: VUPEN:ADV-2011-0044
Reference: URL: http://www.vupen.com/english/advisories/
Bugzilla
CVE-2011-0402 dpkg: arbitrary file modification via symlink attack
bugzilla·2011-01-12·CVSS 6.8
CVE-2011-0402 [MEDIUM] CVE-2011-0402 dpkg: arbitrary file modification via symlink attack
CVE-2011-0402 dpkg: arbitrary file modification via symlink attack
Common Vulnerabilities and Exposures assigned an identifier CVE-2011-0402 to
the following vulnerability:
Name: CVE-2011-0402
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0402
Assigned: 20110110
Reference: DEBIAN:DSA-2142
Reference: URL: http://www.debian.org/security/2011/dsa-2142
Reference: UBUNTU:USN-1038-1
Reference: URL: http://www.ubuntu.com/usn/USN-1038-1
Reference: SECUNIA:42826
Reference: URL: http://secunia.com/advisories/42826
Reference: SECUNIA:42831
Reference: URL: http://secunia.com/advisories/42831
Reference: VUPEN:ADV-2011-0040
Reference: URL: http://www.vupen.com/english/advisories/2011/0040
Reference: VUPEN:ADV-2011-0044
Reference: URL: http://www.vupen.com/english/advisories/2011/0044
dp
http://osvdb.org/70825http://secunia.com/advisories/43215http://www.securityfocus.com/bid/46145http://www.securitytracker.com/id?1025042http://www.vupen.com/english/advisories/2011/0319https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-005https://exchange.xforce.ibmcloud.com/vulnerabilities/64915https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12485http://osvdb.org/70825http://secunia.com/advisories/43215http://www.securityfocus.com/bid/46145http://www.securitytracker.com/id?1025042http://www.vupen.com/english/advisories/2011/0319https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-005https://exchange.xforce.ibmcloud.com/vulnerabilities/64915https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12485
2011-02-09
Published