CVE-2012-0151

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus

SecuriTeam™
Beyond Security®

SecuriTeam™ Home
Ask the Team
Mailing Lists
Advertising Info
Blogs

	SecuriTeam™ in Your Inbox

	E-mail this CVE-2012-0151 to a friend

New vulnerability?
New tool?
Tell us

Credit:
The information has been provided by Robert Zacek and Igor Glucksmann.

Website Security Scan	Code Vulnerability Test	Network Assessment Tool
Detect hidden vulnerabilities	Exhaustive automated testing	Real-time, continuous security
Get guidance from professionals	of internal or 3rd party code.	scanning for your entire network

Check for CVE-2012-0151

Vulnerability Assessment and Management.
Automated Pen Testing for 50 to 50,000 nodes
beyondsecurity.com/vulnerability-scanner

Vulnerable Systems:
* Microsoft Windows XP SP2 and SP3,
* Windows Server 2003 SP2,
* Windows Vista SP2,
* Windows Server 2008 SP2, R2, and R2 SP1,
* Windows 7 Gold and SP1

A remote code execution vulnerability exists in the Windows Authenticode Signature Verification function used for portable executable (PE) files. An anonymous attacker could exploit the vulnerability by modifying an existing signed executable file to leverage unverified portions of the file in such a way as to add malicious code to the file without invalidating the signature. An attacker who successfully exploited this vulnerability could take complete control of an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights.

Vendor Status:
Microsoft had issued an update for this vulnerability

Patch Availability:
http://technet.microsoft.com/en-us/security/bulletin/ms12-024

CVE Information:
CVE-2012-0151

Disclosure Timeline:
Published: Tuesday, April 10, 2012

Security News - Security Reviews - Exploits - Tools - UNIX Focus - Windows Focus