9.3

CVE-2008-4037

Exploit

EPSS 73.93%
Published 12.11.2008 23:30:02
Last modified 09.04.2025 00:30:58
Source secure@microsoft.com
Teams watchlist Login
Open Login

Microsoft Windows 2000 Gold through SP4, XP Gold through SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008 allows remote SMB servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, as demonstrated by backrush, aka "SMB Credential Reflection Vulnerability."  NOTE: some reliable sources report that this vulnerability exists because of an insufficient fix for CVE-2000-0834.

Affected products Warnungen 0 Metrics 2 CWE 1 References 18

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Versionserver_2003 Updatesp1

Microsoft ≫ Windows Versionserver_2003 Updatesp1 Editionitanium

Microsoft ≫ Windows Versionserver_2003 Updatesp2

Microsoft ≫ Windows Versionserver_2003 Updatesp2 Editionitanium

Microsoft ≫ Windows Versionserver_2003 Updatesp2 Editionx64

Microsoft ≫ Windows Versionserver_2003 Updateunknown Editionx64

Microsoft ≫ Windows Versionxp Updatesp2

Microsoft ≫ Windows Versionxp Updatesp2 Editionx64

Microsoft ≫ Windows Versionxp Updatesp3

Microsoft ≫ Windows Versionxp Updateunknown Editionx64

Microsoft ≫ Windows 2000 Version- Updatesp4

Microsoft ≫ Windows Server 2008 Version- Editionitanium

Microsoft ≫ Windows Server 2008 Version- Editionx32

Microsoft ≫ Windows Server 2008 Version- Editionx64

Microsoft ≫ Windows Vista Version-

Microsoft ≫ Windows Vista Version- Editionx64

Microsoft ≫ Windows Vista Version- Updatesp1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	73.93%	0.988

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

http://marc.info/?l=bugtraq&m=122703006921213&w=2

http://www.us-cert.gov/cas/techalerts/TA08-316A.html

US Government Resource

http://osvdb.org/49736

http://secunia.com/advisories/32633

Vendor Advisory

http://securitytracker.com/id?1021163

http://www.networkworld.com/news/2008/111208-microsoft-seven-year-security-patch.html

http://www.securityfocus.com/bid/7385

Patch

Exploit

http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch

Exploit

http://www.securityfocus.com/data/vulnerabilities/exploits/backrush.patch.README

Exploit

http://www.veracode.com/blog/2008/11/microsoft-fixes-8-year-old-design-flaw-in-smb/

http://www.vupen.com/english/advisories/2008/3110

Vendor Advisory

http://www.xfocus.net/articles/200305/smbrelay.html

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-068

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6012

https://www.exploit-db.com/exploits/7125

https://nvd.nist.gov/vuln/detail/CVE-2008-4037

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-4037

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-4037

EUVD