CVE-2011-1889

The NSPLookupServiceNext function in the client in Microsoft Forefront Threat Management Gateway (TMG) 2010 allows remote attackers to execute arbitrary code via vectors involving unspecified requests, aka "TMG Firewall Client Memory Corruption Vulnerability."
Configurations

Configuration 1 (hide)

cpe:2.3:a:microsoft:forefront_threat_management_gateway:2010:*:*:*:*:*:*:*

History

21 Nov 2024, 01:27

Type Values Removed Values Added
References () http://secunia.com/advisories/44857 - Broken Link () http://secunia.com/advisories/44857 - Broken Link
References () http://www.securityfocus.com/bid/48181 - Broken Link, Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/48181 - Broken Link, Third Party Advisory, VDB Entry
References () http://www.securitytracker.com/id?1025637 - Broken Link, Third Party Advisory, VDB Entry () http://www.securitytracker.com/id?1025637 - Broken Link, Third Party Advisory, VDB Entry
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 - Patch, Vendor Advisory () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 - Patch, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 - Third Party Advisory, VDB Entry () https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 - Third Party Advisory, VDB Entry
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 - Broken Link () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 - Broken Link

24 Jul 2024, 14:30

Type Values Removed Values Added
CVSS v2 : 10.0
v3 : unknown
v2 : 10.0
v3 : 9.8
References () http://secunia.com/advisories/44857 - () http://secunia.com/advisories/44857 - Broken Link
References () http://www.securityfocus.com/bid/48181 - () http://www.securityfocus.com/bid/48181 - Broken Link, Third Party Advisory, VDB Entry
References () http://www.securitytracker.com/id?1025637 - () http://www.securitytracker.com/id?1025637 - Broken Link, Third Party Advisory, VDB Entry
References () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 - () https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-040 - Patch, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/67736 - Third Party Advisory, VDB Entry
References () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 - () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12642 - Broken Link

Information

Published : 2011-06-16 20:55

Updated : 2024-11-21 01:27


NVD link : CVE-2011-1889

Mitre link : CVE-2011-1889

CVE.ORG link : CVE-2011-1889


JSON object : View

Products Affected

microsoft

  • forefront_threat_management_gateway
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer