CVE-2018-0886

Published: Mar 14, 2018Modified: Nov 21, 2024

7.0

Vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how CredSSP validates request during the authentication process, aka "CredSSP Remote Code Execution Vulnerability".

Affected (17)

Products: Microsoft: Windows 10, Windows 7, Windows 8.1, Windows Rt 8.1, Windows Server 2008, Windows Server 2012, Windows Server 2016

7 products

Windows Server 2008

Windows Server 2012

Windows Server 2016

Configuration A

17 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 10	All versions
Microsoft Windows 10	Version 1511
Microsoft Windows 10	Version 1607
Microsoft Windows 10	Version 1703
Microsoft Windows 10	Version 1709
Microsoft Windows 10	Version 1803
Microsoft Windows 7	All versions
Microsoft Windows 8.1	All versions
Microsoft Windows Rt 8.1	All versions
Microsoft Windows Server 2008	All versions
Microsoft Windows Server 2008	Version r2 sp1
Microsoft Windows Server 2008	Version r2 sp1
Microsoft Windows Server 2012	All versions
Microsoft Windows Server 2012	Version r2
Microsoft Windows Server 2016	All versions
Microsoft Windows Server 2016	Version 1709
Microsoft Windows Server 2016	Version 1803

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (14)

http://www.securityfocus.com/bid/103265

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040506

Source: secure@microsoft.com

Third Party AdvisoryVDB Entry

https://blog.preempt.com/security-advisory-credssp

Source: secure@microsoft.com

ExploitThird Party Advisory

https://github.com/preempt/credssp

Source: secure@microsoft.com

ExploitThird Party Advisory

https://ics-cert.us-cert.gov/advisories/ICSA-18-198-03

Source: secure@microsoft.com

Third Party AdvisoryUS Government Resource

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0886

Source: secure@microsoft.com

PatchVendor Advisory

https://www.exploit-db.com/exploits/44453/

Source: secure@microsoft.com

ExploitThird Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/103265

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1040506

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://blog.preempt.com/security-advisory-credssp

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://github.com/preempt/credssp

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://ics-cert.us-cert.gov/advisories/ICSA-18-198-03

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0886

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://www.exploit-db.com/exploits/44453/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.