Lucene search
PRIOn knowledge basePRION:CVE-2016-0128HistoryApr 12, 2016 - 11:59 p.m.
Design/Logic Flaw
2016-04-1223:59:00
PRIOn knowledge base
www.prio-n.com
4
The SAM and LSAD protocol implementations in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 do not properly establish an RPC channel, which allows man-in-the-middle attackers to perform protocol-downgrade attacks and impersonate users by modifying the client-server data stream, aka “Windows SAM and LSAD Downgrade Vulnerability” or “BADLOCK.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| windows_10 | eq | 1511 | |
| windows_server_2008 | eq | r2 sp1 | |
| windows_server_2012 | eq | 2.0.114 |
Related
mskb
mskb
mscve
mscve
Windows SAM and LSAD Downgrade Vulnerability
2016-04-12 07:00:00
cve
cve
CVE-2016-0128
2016-04-12 23:59:06
cvelist
cvelist
CVE-2016-0128
2016-04-12 23:00:00
nessus
nessus
nvd
nvd
CVE-2016-0128
2016-04-12 23:59:06
openvas
openvas
Microsoft Windows SAM and LSAD Privilege Elevation Vulnerability (3148527)
2016-04-13 00:00:00
Samba Badlock Critical Vulnerability
2016-04-14 00:00:00
symantec
symantec
Microsoft Windows RPC Downgrade CVE-2016-0128 Man in the Middle Security Bypass Vulnerability
2016-04-12 00:00:00
SA122 : SMB Vulnerabilities in Windows and Samba (Badlock)
2016-04-15 08:00:00
cert
cert
samba
samba
SAMR and LSA man in the middle attacks possible
2016-04-12 00:00:00
SAMR and LSA man in the middle attacks possible
2016-04-12 00:00:00
threatpost
threatpost
Badlock Windows, Samba Man-in-the-Middle Vulnerability
2016-04-12 14:30:14
checkpoint_advisories
checkpoint_advisories
kaspersky
kaspersky
KLA11915 Multiple vulnerabilities in Microsoft Products (ESU)
2017-04-12 00:00:00
KLA11916 Multiple vulnerabilities in Microsoft Products (ESU)
2016-04-12 00:00:00
KLA10784 Multiple vulnerabilities in Microsoft Windows
2016-04-12 00:00:00