CISA KEV 정보
| 취약점명 | Microsoft Forefront TMG Remote Code Execution Vulnerability |
|---|---|
| 설명 | A remote code execution vulnerability exists in the Forefront Threat Management Gateway (TMG) Firewall Client Winsock provider that could allow code execution in the security context of the client application. |
| 조치사항 | Apply updates per vendor instructions. |
| 랜섬웨어 캠페인 악용 | Unknown |
| CWE | CWE-119 |
| 등록일 (KEV) | 2022-03-03 |
| 조치 기한 | 2022-03-24 |
| 추가 참고 | https://nvd.nist.gov/vuln/detail/CVE-2011-1889 |
NVD 상세 정보
CVSS v3.1: 9.8 CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCVSS v2.0: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C설명: The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (TMG) 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka "TMG Firewall Client Memory Corruption Vulnerability."
CWE: CWE-119 | CWE-119
참조
- http://secunia.com/advisories/44857 [Broken Link]
- http://www.securityfocus.com/bid/48181 [Broken Link, Third Party Advisory, VDB Entry]
- http://www.securitytracker.com/id?1025637 [Broken Link, Third Party Advisory, VDB Entry]
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 [Patch, Vendor Advisory]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 [Third Party Advisory, VDB Entry]
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 [Broken Link]
- http://secunia.com/advisories/44857 [Broken Link]
- http://www.securityfocus.com/bid/48181 [Broken Link, Third Party Advisory, VDB Entry]
- http://www.securitytracker.com/id?1025637 [Broken Link, Third Party Advisory, VDB Entry]
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 [Patch, Vendor Advisory]
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 [Third Party Advisory, VDB Entry]
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 [Broken Link]
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2011-1889
This product uses the NVD API but is not endorsed or certified by the NVD.