CVE-2015-0005 — Authentication Bypass by Spoofing in Microsoft Windows Server 2008
Severity
6.3MEDIUMNVD
NVD4.3OSV4.3
EPSS
2.4%
top 14.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 11
Latest updateJul 12
Description
The NETLOGON service in Microsoft Windows Server 2003 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 Gold and R2, when a Domain Controller is configured, allows remote attackers to spoof the computer name of a secure channel's endpoint, and obtain sensitive session information, by running a crafted application and leveraging the ability to sniff network traffic, aka "NETLOGON Spoofing Vulnerability."
CVSS vector
AV:A/AC:M/C:P/I:P/A:NExploitability: 5.5 | Impact: 4.9
Affected Packages4 packages
Also affects: Ubuntu Linux 14.04, 15.10, 16.04
🔴Vulnerability Details
3GHSA▶
GHSA-x38p-wh5w-wmgx: The NETLOGON service in Microsoft Windows Server 2003 SP2, Windows Server 2008 SP2 and R2 SP1, and Windows Server 2012 Gold and R2, when a Domain Cont↗2022-05-14
📋Vendor Advisories
3Debian▶
CVE-2016-2111: samba - The NETLOGON service in Samba 3.x and 4.x before 4.2.11, 4.3.x before 4.3.8, and...↗2016
🕵️Threat Intelligence
2💬Community
1Bugzilla
▶