CVE-2011-1889
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (TMG) 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka "TMG Firewall Client Memory Corruption Vulnerability."
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securitytracker.com/id?1025637
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67736
- http://www.securityfocus.com/bid/48181
- http://secunia.com/advisories/44857
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642
CISA ADP Vulnrichment
- SSVC:
- Exploitation: active
- Automatable: yes
- Technical Impact: total
Additional References
References
- http://www.securitytracker.com/id?1025637
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/67736
- http://www.securityfocus.com/bid/48181
- http://secunia.com/advisories/44857
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.