Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2011-2013 — Integer Overflow or Wraparound in Microsoft Windows Server 2008

CWE-189 CWE-190 — Integer Overflow or Wraparound CWE-377 — Insecure Temporary File34 documents9 sources

Severity

9.8CRITICALNVD

EPSS

42.8%

top 2.51%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows Server 2008 Apache Httpd

Timeline

PublishedNov 8

Latest updateMay 13

Description

Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote attackers to execute arbitrary code by sending a sequence of crafted UDP packets to a closed port, aka "Reference Counter Overflow Vulnerability."

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

▶NVDmicrosoft/windowsr2

▶apacheapache/httpd

🔴Vulnerability Details

GHSA

GHSA-q323-hhw8-233j: Integer overflow in the TCP/IP implementation in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allo↗2022-05-13

▶

💥Exploits & PoCs

Exploit-DB

Ubisoft Rayman Legends 1.2.103716 - Remote Stack Buffer Overflow (PoC)↗2014-06-18

▶

Exploit-DB

PCMan FTP Server 2.07 - 'ABOR' Remote Buffer Overflow↗2014-01-29

▶

Exploit-DB

UPC Ireland Cisco EPC 2425 Router / Horizon Box - WPA-PSK Handshake Information↗2013-12-16

▶

Exploit-DB

Zimbra 2009-2013 - Local File Inclusion↗2013-12-06

▶

Exploit-DB

ZonPHP 2.25 - Remote Code Execution↗2013-10-20

▶

📋Vendor Advisories

Red Hat

tomcat: World-readable log directory↗2013-02-22

▶

Red Hat

hplip: insecure temporary file handling flaws↗2013-02-21

▶

VMware

VMware vSphere security updates for the authentication service and third party libraries↗2013-01-31

▶

Apache

Apache httpd: CVE-2011-3192↗

▶

💬Community

HackerOne

SSL/TLS Vulnerability at khanacademy.org↗2017-02-22

▶

Bugzilla

CVE-2013-4550 CVE-2011-5268 bip: failed SSL handshake resource leak↗2013-11-08

▶

Bugzilla

CVE-2011-5267 xinha: multiple cross-site scripting vulnerabilities↗2013-11-05

▶

Bugzilla

CVE-2011-4969 jquery: Cross-site scripting (XSS) via $(location.hash) and $(#<tag>)↗2013-02-01

▶

Bugzilla

CVE-2013-0200 hplip: insecure temporary file handling flaws↗2013-01-21

▶