Microsoft Windows IPsec Policy Processing Information Disclosure Vulnerability (953733) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS08-047.

Impact

Successful exploitation will result in systems ignoring IPsec policies and thus transmit data otherwise intended to be encrypted in clear text. Impact Level: System/Application

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://www.microsoft.com/technet/security/bulletin/ms08-047.mspx

Insight

The flaw is caused by an error when the default IPsec policy is imported from a Windows Server 2003 domain to a Windows Server 2008 domain, which could cause all IPsec rules to be ignored and network traffic to be transmitted in clear text.

Affected

Microsoft Windows Vista Service Pack 1 and prior. Microsoft Windows Server 2008 Service Pack 1 and prior.

References

http://secunia.com/advisories/31411
http://www.microsoft.com/technet/security/bulletin/ms08-047.mspx
http://www.vupen.com/english/advisories/2008/2351

Updated on 2015-03-25

Severity

Classification

CVE CVE-2008-2246

CVSS	Base Score: 7.8 AV:N/AC:L/Au:N/C:C/I:N/A:N

Related Vulnerabilities

Microsoft IE Developer Tools WMITools and Windows Messenger ActiveX Control Vulnerability (2508272)
ADODB.Stream object from Internet Explorer (KB870669)
Microsoft Antimalware Client Privilege Elevation Vulnerability (2823482)
Host Integration Server RPC Service Remote Code Execution Vulnerability (956695)
Microsoft Filter Pack Remote Code Execution Vulnerability (2801261)

Take action and discover your vulnerabilities