BSM Reference Stack 2.1 security vulnerabilities and recommendations - Windows
The following security vulnerabilities were found during security scans of version 2.1 of the BSM Reference Stack on Microsoft Windows operating systems. This table represents autogenerated output.
Operating system | Port | Vulnerability name | Vulnerability description | Initial risk rating | Common Vulnerabilities Exposures (CVE) ID | Recommendation |
|---|---|---|---|---|---|---|
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 135 | (MS03-026) Microsoft Windows RPC DCOM Buffer Overflow (Intrusive) | A buffer overflow vulnerability in Microsoft Windows DCOM allows remote attackers to execute arbitrary code on the targeted host. | High | CVE-2003-0352 | Install the patch (Q824146) released by Microsoft that addresses this issue, available from:Note this patch was created for a more recent vulnerability that supercedes this issue:(MS03-039). http://support.microsoft.com/?kbid=824146To further minimize the risks associated with this issue, ensure that access polices on border devices such as routers and firewalls restrict network traffic over TCP port 135 to necessary networks and systems.Superseded patch information:The patch for Microsoft Windows NT 4.0 is superseded by the patch provided in MS04-029The patch for Microsoft Windows 2000 is superseded by the patch provided in MS06-018The patch for Microsoft Windows XP is superseded by the patch provided in MS05-051The patch for Microsoft Windows 2003 is superseded by the patch provided in MS05-051http://www.microsoft.com/technet/security/Bulletin/MS04-029.mspxhttp://www.microsoft.com/technet/security/Bulletin/MS06-018.mspxhttp://www.microsoft.com/technet/security/Bulletin/MS05-051.mspx |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (MS11-025) Microsoft MFC Insecure Library Loading (2500212) | A remote code execution vulnerability is present in some versions of Microsoft Foundation Classes. | High | CVE-2010-3190 | The vendor has released an update to address the issue:http://www.microsoft.com/technet/security/bulletin/ms11-025.mspx |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE Critical Patch Update June 2011 | Multiple vulnerabilities are present in some versions of Oracle Java SE. | High | CVE-2011-0862 | The vendor has released an update to address the issue:http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE JDK Unspecified Vulnerability | An unspecified vulnerability is present in some versions of Oracle Java SE. | High | CVE-2011-3544 | The vendor has released an update to address the issue:http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE and Java for Business Multiple Vulnerabilities (February 2011) | Multiple vulnerabilities are present in some versions of Oracle Java SE and Oracle Java for Business. | High | CVE-2010-4452 | Download the latest version of Oracle Java SE and Oracle Java for Business from the following location:http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE October 2010 Critical Patch Update | Multiple vulnerabilities are present in some versions of Java SE. | High | CVE-2010-3556 | Upgrade to Java SE 6 Update 22, available from the following location:http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE Critical Patch Update October 2011 | Multiple vulnerabilities are present in some versions of Oracle Java SE. | High | CVE-2011-3389 | The vendor has released an update to address the issue:http://www.oracle.com/technetwork/topics/security/javacpuoct2011-443431.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java SE 6 Multiple Vulnerabilities Prior To Update 30 | Multiple vulnerabilities are present in some versions of Oracle Java SE. | High | CVE-MAP-NOMATCH | Download the latest version of Oracle Java SE from the following location:http://www.oracle.com/technetwork/java/javase/2col/6u30bugfixes-1394936.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java Runtime Environment Deployment Applet2ClassLoader Remote Code Execution | A remote code execution vulnerability is present in some versions of Oracle Java Runtime Environment. | High | CVE-2010-4452 | Download the latest version of Oracle Java SE and Oracle Java for Business from the following location:http://www.oracle.com/technetwork/topics/security/javacpufeb2011-304611.htmlhttp://www.oracle.com/technetwork/topics/security/cpuapr2011-301950.htmlVMware third party component updates:http://www.vmware.com/security/advisories/VMSA-2011-0013.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java RMI Services Default Configuration Remote Code Execution | A remote code execution vulnerability exists in some versions of Oracle Java RMI Services. | High | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update (10/11/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java Runtime Environment 2D Remote Code Execution II | A remote code execution vulnerability is present in some versions of Oracle Java Runtime Environment. | High | CVE-2011-0873 | The vendor has released an update to address the issue:http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.htmlVMware third party component updates:http://www.vmware.com/security/advisories/VMSA-2011-0013.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft HTML Help Stack Overflow Remote Code Execution | A remote code execution vulnerability is present in some versions of Microsoft Windows. | High | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update (08/10/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSA11-01) Adobe Flash Player ".xls" files Denial Of Service | A denial of service vulnerability is present in some versions of Adobe Reader, Acrobat and Flash Player. | High | CVE-2011-0609 | Vendor updates are available at:http://www.adobe.com/support/security/advisories/apsa11-01.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSA11-02) Adobe Flash Player/Acrobat/Reader Doc Remote Code Execution | A remote code execution vulnerability is present in some versions of Abode Flash Player, Acrobat and Reader. | High | CVE-2011-0611 | The vendor has released an update to address the issue:Adobe Flash Player:http://www.adobe.com/support/security/bulletins/apsb11-07.htmlUpdates for Adobe Reader and Acrobat:http://www.adobe.com/support/security/bulletins/apsb11-08.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-21) Adobe Flash Player Multiple Vulnerabilities Prior To 10.3.183.5 | Multiple vulnerabilities are present in some versions of Adobe Flash Player. | High | CVE-2011-2130 | Download the latest version of Adobe Flash Player from the following location:http://get.adobe.com/flashplayer/ |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player AVM Remote Code Execution | A remote code execution vulnerability is present in some versions of Adobe Flash Player. | High | CVE-2011-2426 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Adobe Flash Player VulnDisco Step Ahead Remote Code Execution | A remote code execution vulnerability is present in some versions of Adobe Flash Player. | High | CVE-2011-4694 | McAfee is currently unaware of a vendor-supplied patch or update (12/30/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player AVM Remote Code Execution II | A remote code execution vulnerability is present in some versions of Adobe Flash Player. | High | CVE-2011-2427 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player Remote Code Execution | A remote code execution vulnerability is present in some versions of Adobe Flash Player. | High | CVE-2011-2428 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player Streaming Remote Code Execution | A remote code execution vulnerability is present in some versions of Adobe Flash Player. | High | CVE-2011-2430 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-28) Adobe Flash Player Multiple Vulnerabilities | Multiple vulnerabilities are present in some versions of Adobe Flash Player. | High | CVE-2011-2445 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-28.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (MS11-049) Microsoft XML Editor Could Allow Information Disclosure (2543893) | A information disclosure vulnerability is present in some versions of Microsoft XML Editor. | High | CVE-2011-1280 | The vendor has released an update to address the issue:http://www.microsoft.com/technet/security/bulletin/ms11-049.mspx |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer Address Bar Pop-Up Spoofing | A spoofing vulnerability exists in some versions of Microsoft Internet Explorer. | Medium | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update. (03/7/2011) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer URL Spoofing Vulnerability | A vulnerability in Microsoft Internet Explorer may allow an attacker to spoof legitimate Web sites. | Medium | CVE-2009-3003 | McAfee Avert Labs is not aware of a vendor-supplied patch/upgrade at this time (10/06/2009) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer findText Parsing Denial-of-Service Vulnerability | A vulnerability in Microsoft Internet Explorer may allow for remote denial-of-service attacks. | Medium | CVE-2009-2655 | McAfee is unaware of a vendor-supplied patch or update at this time (8/27/2009) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer XSS Filter Cross-Site Scripting Vulnerability | A cross-site scripting vulnerability is present in some versions of Microsoft Internet Explorer. | Medium | CVE-2010-1489 | McAfee is currently unaware of a vendor-supplied patch or update (6/30/2011) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer Cache Objects History Enumeration Weakness Information Disclosure | An information disclosure vulnerability is present in some versions of Microsoft Internet Explorer. | Medium | CVE-2011-4689 | McAfee is currently unaware of a vendor-supplied patch or update (12/30/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Service Isolation Bypass Vulnerability | A privilege escalation vulnerability is present some versions of Microsoft Windows. | Medium | CVE-2010-1886 | Microsoft has not provide a patch for this issue. Please do not run critical services with NetworkService privileges.The vendor has released an advisory describing workarounds that does not correct the underlying issue but would help block known attack vectors.For more information see,http://technet.microsoft.com/en-us/security/advisory/2264072 |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Win32k.sys Buffer Overflow Vulnerability | A buffer overflow vulnerability is present in some versions of Microsoft Windows. | Medium | CVE-MAP-NOMATCH | The vendor will address this issue via a future security update. Info:http://blogs.technet.com/b/msrc/archive/2010/08/10/update-on-the-publicly-disclosed-win32k-sys-eop-vulnerability.aspx |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Environment Variable Expansion Library Loading Vulnerability | A logic error is present in some versions of Microsoft Windows. | Medium | CVE-MAP-NOMATCH | The vendor has released an advisory describing a workaround that can be used to mitigate this issue.More information can be found at:http://support.microsoft.com/kb/329308 |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Oracle Java Runtime Environment Insecure File Loading | An insecure file loading vulnerability is present in some versions of Sun Microsystems Java Runtime Environment (JRE). | Medium | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update (10/11/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows wab32res.dll Insecure Library Loading Remote Code Execution | An insecure library loading vulnerability is present in some versions of Microsoft Windows. | Medium | CVE-2010-3143 | McAfee is currently unaware of a vendor-supplied patch or update (12/12/2011). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player Universal Cross Site Scripting Security Bypass | A security bypass vulnerability is present in some versions of Adobe Flash Player. | Medium | CVE-2011-2444 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | (APSB11-26) Adobe Flash Player Control Bypass Information Disclosure | An information disclosure vulnerability is present in some versions of Adobe Flash Player. | Medium | CVE-2011-2429 | The vendor has released an update to address the issue:http://www.adobe.com/support/security/bulletins/apsb11-26.html |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Skype URI Handling "/Datapath" Vulnerability | A vulnerability in Skype can be exploited to bypass certain security restrictions and can potentially lead to sensitive information disclosure. | Medium | CVE-MAP-NOMATCH | Update to version 4.2.0.155 (v4.2 hotfix #1). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Skype file: URI Handler Vulnerability | A vulnerability in Skype may allow for code-execution attacks. | Medium | CVE-2008-1805 | The vendor has made an update available for remediation here:http://www.skype.com/download/ |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer 'mshtml.dll' Remote Information Disclosure Vulnerability | A vulnerability exists in Microsoft Internet Explorer that may be used by attackers to gain sensitive information. | Medium | CVE-2010-3886 | The vendor has released an update for IE7 and IE8 to address this issue.http://www.microsoft.com/technet/security/bulletin/MS11-050.mspxOn IE6, McAfee is currently unware of a vendor supplied patch or update (2012/02/15). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Kerberos "Pass The Ticket" Replay Vulnerability | A security bypass vulnerability is present in some versions of Microsoft Windows. | Low | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update(08/20/2010). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer AddFavorite Method Denial-of-Service Vulnerability | A vulnerability exists in Microsoft Internet Explorer that may allow for denial of service attacks. | Low | CVE-2009-2433 | McAfee Avert Labs is not aware of a vendor supplied patch/update at this time. (8/20/2009) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer CSS 'expression' Remote Denial of Service Vulnerability | A remote denial of service vulnerability is present in some versions of Microsoft Internet Explorer. | Low | CVE-MAP-NOMATCH | McAfee is currently not aware of any patches from the vendor. (1/16/2011) |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Internet Explorer Cache Objects History Enumeration Weakness | An information disclosure vulnerability is present in some versions of Microsoft Internet Explorer. | Low | CVE-2002-2435 | McAfee is currently unaware of a vendor-supplied patch or update (2/13/2012). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Explorer Local Denial Of Service Vulnerability | A local denial of service vulnerability is present in some versions of Microsoft Windows. | Low | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update (02/09/2012). |
Windows 2008 (Version 6.1, , Build 7600, Server [*]) | 139 | Microsoft Windows Local DNS Poisoning Vulnerabilities | Multiple DNS poisoning vulnerabilities are present in some versions of Microsoft Windows. | Low | CVE-MAP-NOMATCH | McAfee is currently unaware of a vendor-supplied patch or update (12/30/2011). |