exploits , vulnerabilities , articles , Microsoft Windows WINS Server WPAD and ISATAP Access Validation Vulnerability

Title	Microsoft Windows WINS Server WPAD and ISATAP Access Validation Vulnerability
Published	2009-03-10-12:00AM
Updated	2009-03-10-05:36PM
Class	Design Error
CVE	CVE-2009-0094
Remote	Yes
Local	No
Credit	This issue was disclosed by the vendor.
Vulnerable	Microsoft Windows Server 2003 x64 SP2 Microsoft Windows Server 2003 x64 SP1 Microsoft Windows Server 2003 Web Edition SP2 Microsoft Windows Server 2003 Web Edition SP1 Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Terminal Services 0 Microsoft Windows Server 2003 Standard x64 Edition Microsoft Windows Server 2003 Standard Edition SP2 Microsoft Windows Server 2003 Standard Edition SP1 Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Itanium SP2 Microsoft Windows Server 2003 Itanium SP1 Microsoft Windows Server 2003 Itanium 0 Microsoft Windows Server 2003 Enterprise x64 Edition SP2 Microsoft Windows Server 2003 Enterprise x64 Edition Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Microsoft Windows Server 2003 Enterprise Edition SP1 Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Datacenter x64 Edition SP2 Microsoft Windows Server 2003 Datacenter x64 Edition Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Microsoft Windows Server 2003 Datacenter Edition SP1 Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Avaya DefinityOne Media Servers Avaya IP600 Media Servers Avaya S3400 Message Application Server Avaya S8100 Media Servers
Not Vulnerable
Code	An attacker may exploit this issue using readily available tools.
TXT

Vulnerabilities - newest 10 RSS | More

• 2009-12-09 HP OpenView Network Node Manager Multiple Remote Code Execution Vulnerabilities
• 2009-12-09 Shibboleth Redirection URL HTML Injection Vulnerability
• 2009-12-09 VLC Media Player RTSP Remote Buffer Overflow Vulnerability
• 2009-12-09 Polipo Malformed HTTP GET Request Memory Corruption Vulnerability
• 2009-12-09 PhpShop Cross-Site Scripting and SQL Injection Vulnerabilities
• 2009-12-09 GNU GRUB Local Authentication Bypass Vulnerability
• 2009-12-09 NTP mode 7 MODE_PRIVATE Packet Remote Denial of Service Vulnerability
• 2009-12-08 LightNEasy fckeditor Arbitrary File Upload Vulnerability
• 2009-12-08 HP OpenView Data Protector Application Recovery Manager Stack Buffer Overflow Vulnerability
• 2009-12-08 RETIRED: Microsoft December 2009 Advance Notification Multiple Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Wed, 09 Dec 2009 22:47:33 +0000