CVE-2010-1690

Severity Score

6.4

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The DNS implementation in smtpsvc.dll before 6.0.2600.5949 in Microsoft Windows 2000 SP4 and earlier, Windows XP SP3 and earlier, Windows Server 2003 SP2 and earlier, Windows Server 2008 SP2 and earlier, Windows Server 2008 R2, Exchange Server 2003 SP3 and earlier, Exchange Server 2007 SP2 and earlier, and Exchange Server 2010 does not verify that transaction IDs of responses match transaction IDs of queries, which makes it easier for man-in-the-middle attackers to spoof DNS responses, a different vulnerability than CVE-2010-0024 and CVE-2010-0025.

La implementación DNS en smtpsvc.dll anteriores a v6.0.2600.5949 en Microsoft Windows 2000 SP4 y anteriores, Windows XP SP3 y anteriores, Windows Server 2003 SP2 y anteriores, Windows Server 2008 SP2 y anteriores , Windows Server 2008 R2, Exchange Server 2003 SP3 y anteriores, Exchange Server 2007 SP2 y anteriores, y Exchange Server 2010 no verifican que IDs de transacción de respuestas, coinciden con con las IDs de las peticiones, lo que provoca que sea fácil que un atacante capture respuestas DNS mediante un ataque "hombre-en-medio" (man-in-the-middle), es una vulnerabilidad distinta a CVE-2010-0024 and CVE-2010-0025.

*Credits: N/A

CVSS Scores

NISTv2 6.4

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2010-04-30 CVE Reserved
2010-05-05 CVE Published
2024-09-16 CVE Updated
2024-09-23 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (4)

URL	Tag	Source
http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0058.html	Broken Link
http://securitytracker.com/id?1023939	Third Party Advisory
http://www.coresecurity.com/content/CORE-2010-0424-windows-smtp-dns-query-id-bugs	Third Party Advisory

URL	Date	SRC

URL	Date	SRC
http://www.securityfocus.com/bid/39910	2020-04-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Microsoft Search vendor "Microsoft"		Windows 2000 Search vendor "Microsoft" for product "Windows 2000"				-		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows 2000 Search vendor "Microsoft" for product "Windows 2000"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows 2000 Search vendor "Microsoft" for product "Windows 2000"				-		sp3		Affected
Microsoft Search vendor "Microsoft"		Windows 2000 Search vendor "Microsoft" for product "Windows 2000"				-		sp4		Affected
Microsoft Search vendor "Microsoft"		Windows Xp Search vendor "Microsoft" for product "Windows Xp"				-		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows Xp Search vendor "Microsoft" for product "Windows Xp"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Xp Search vendor "Microsoft" for product "Windows Xp"				-		sp3		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003"				-		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2003 Search vendor "Microsoft" for product "Windows Server 2003"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				-		sp1		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				-		sp2		Affected
Microsoft Search vendor "Microsoft"		Windows Server 2008 Search vendor "Microsoft" for product "Windows Server 2008"				r2 Search vendor "Microsoft" for product "Windows Server 2008" and version "r2"		-		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2003 Search vendor "Microsoft" for product "Exchange Server" and version "2003"		-		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2003 Search vendor "Microsoft" for product "Exchange Server" and version "2003"		sp1		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2003 Search vendor "Microsoft" for product "Exchange Server" and version "2003"		sp2		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2007 Search vendor "Microsoft" for product "Exchange Server" and version "2007"		-		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2007 Search vendor "Microsoft" for product "Exchange Server" and version "2007"		sp1		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2007 Search vendor "Microsoft" for product "Exchange Server" and version "2007"		sp2		Affected
Microsoft Search vendor "Microsoft"		Exchange Server Search vendor "Microsoft" for product "Exchange Server"				2010 Search vendor "Microsoft" for product "Exchange Server" and version "2010"		-		Affected