CERTA-2011-AVI-351
Vulnerability from certfr_avis

Une vulnérabilité dans le client SMB de Microsoft permet à une personne malveillante d'exécuter du code arbitraire à distance.

Description

Une vulnérabilité, causée par une erreur dans le traitement de paquet SMB, permet à un individu malintentionné d'exécuter du code arbitraire à distance au moyen d'une réponse SMB spécialement construite et sans authentification préalable.

L'éditeur met en garde contre des incompatibilités entre l'application du correctif et certaines configurations du serveur SAMBA. Il a mis à jour le bulletin KB2536276 à cet effet dans sa base de support (cf. section Documentation).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None
Impacted products
Vendor Product Description
Microsoft Windows Windows 7 pour systèmes 32-bit ;
Microsoft Windows Windows 7 pour systèmes 32-bit Service Pack 1 ;
Microsoft Windows Windows Server 2008 R2 pour systèmes Itanium Service Pack 1.
Microsoft Windows Windows 7 pour systèmes x64 ;
Microsoft Windows Windows Vista Service Pack 1 et Windows Vista Service Pack 2 ;
Microsoft Windows Windows XP Professional x64 Edition Service Pack 2 ;
Microsoft Windows Windows Vista x64 Edition Service Pack 1 et Windows Vista x64 Edition Service Pack 2 ;
Microsoft Windows Windows Server 2008 pour systèmes Itanium and Windows Server 2008 systèmes Itanium Service Pack 2 ;
Microsoft Windows Windows Server 2008 R2 pour systèmes x64 Systems Service Pack 1 ;
Microsoft Windows Windows Server 2008 R2 pour systèmes x64 Systems ;
Microsoft Windows Windows Server 2008 pour systèmes x64 et Windows Server 2008 pour systèmes x64 Service Pack 2 ;
Microsoft Windows Windows XP Service Pack 3 ;
Microsoft Windows Windows Server 2003 x64 Edition Service Pack 2 ;
Microsoft Windows Windows Server 2003 with SP2 pour systèmes Itanium ;
Microsoft Windows Windows 7 pour systèmes x64 Service Pack 1 ;
Microsoft Windows Windows Server 2008 R2 pour systèmes Itanium ;
Microsoft Windows Windows Server 2008 pour systèmes 32-bit et Windows Server 2008 pour systèmes 32-bit Service Pack 2 ;
Microsoft Windows Windows Server 2003 Service Pack 2 ;
References

Show details on source website

To clipboard 

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Windows 7 pour syst\u00e8mes 32-bit ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 7 pour syst\u00e8mes 32-bit Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes Itanium Service Pack 1.",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 7 pour syst\u00e8mes x64 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista Service Pack 1 et Windows Vista Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows XP Professional x64 Edition Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Vista x64 Edition Service Pack 1 et Windows Vista x64 Edition Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes Itanium and Windows Server 2008 syst\u00e8mes Itanium Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Systems Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes x64 Systems ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes x64 et Windows Server 2008 pour syst\u00e8mes x64 Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows XP Service Pack 3 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2003 x64 Edition Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2003 with SP2 pour syst\u00e8mes Itanium ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows 7 pour syst\u00e8mes x64 Service Pack 1 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 R2 pour syst\u00e8mes Itanium ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2008 pour syst\u00e8mes 32-bit et Windows Server 2008 pour syst\u00e8mes 32-bit Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "Windows Server 2003 Service Pack 2 ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9, caus\u00e9e par une erreur dans le traitement de paquet\nSMB, permet \u00e0 un individu malintentionn\u00e9 d\u0027ex\u00e9cuter du code arbitraire \u00e0\ndistance au moyen d\u0027une r\u00e9ponse SMB sp\u00e9cialement construite et sans\nauthentification pr\u00e9alable.\n\n  \n  \n\nL\u0027\u00e9diteur met en garde contre des incompatibilit\u00e9s entre l\u0027application\ndu correctif et certaines configurations du serveur SAMBA. Il a mis \u00e0\njour le bulletin KB2536276 \u00e0 cet effet dans sa base de support (cf.\nsection Documentation).\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-1268",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1268"
    }
  ],
  "initial_release_date": "2011-06-15T00:00:00",
  "last_revision_date": "2011-06-24T00:00:00",
  "links": [
    {
      "title": "Bulletin de support Microsoft KB2536276 du 22 juin 2011 :",
      "url": "http://support.microsoft.com/kb/2536276/en-us"
    }
  ],
  "reference": "CERTA-2011-AVI-351",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2011-06-15T00:00:00.000000"
    },
    {
      "description": "ajout d\u0027effets secondaires possibles.",
      "revision_date": "2011-06-24T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans le client SMB de Microsoft permet \u00e0 une personne\nmalveillante d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans le client SMB de Microsoft",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Microsoft MS11-043 du 14 juin 2011",
      "url": "http://www.microsoft.com/technet/security/Bulletin/MS11-043.mspx"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.