CVE-2011-0037

Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted value of an unspecified user registry key.

CVSS v2.0 7.2 HIGH

7.2^/10

CVSS v2.0 : HIGH

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/43468	Vendor Advisory
http://securitytracker.com/id?1025117
http://www.microsoft.com/technet/security/advisory/2491888.mspx	Vendor Advisory
http://www.securityfocus.com/bid/46540
http://www.vupen.com/english/advisories/2011/0486	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/65626

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:forefront_client_security::::::::
	cpe:2.3:a:microsoft:forefront_endpoint_protection_2010:-:::::::*
	cpe:2.3:a:microsoft:malicious_software_removal_tool::::::::
	cpe:2.3:a:microsoft:malware_protection_engine::::::::
	cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:::::::*
	cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:::::::*
	cpe:2.3:a:microsoft:security_essentials::::::::
	cpe:2.3:a:microsoft:windows_defender::::::::
	cpe:2.3:a:microsoft:windows_live_onecare::::::::

History

No history.

Information

Published : 2011-02-25 18:00

Updated : 2023-12-10 11:03

NVD link : CVE-2011-0037

Mitre link : CVE-2011-0037

CVE.ORG link : CVE-2011-0037

JSON object : View

Products Affected

microsoft

windows_live_onecare
forefront_client_security
forefront_endpoint_protection_2010
security_essentials
malicious_software_removal_tool
malware_protection_engine
windows_defender

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2011-0037", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.2, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-02-25T18:00:01.213", "references": [{"url": "http://secunia.com/advisories/43468", "tags": ["Vendor Advisory"], "source": "secure@microsoft.com"}, {"url": "http://securitytracker.com/id?1025117", "source": "secure@microsoft.com"}, {"url": "http://www.microsoft.com/technet/security/advisory/2491888.mspx", "tags": ["Vendor Advisory"], "source": "secure@microsoft.com"}, {"url": "http://www.securityfocus.com/bid/46540", "source": "secure@microsoft.com"}, {"url": "http://www.vupen.com/english/advisories/2011/0486", "tags": ["Vendor Advisory"], "source": "secure@microsoft.com"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/65626", "source": "secure@microsoft.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Microsoft Malware Protection Engine before 1.1.6603.0, as used in Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, and Windows Live OneCare, allows local users to gain privileges via a crafted value of an unspecified user registry key."}, {"lang": "es", "value": "Microsoft Malware Protection Engine anterior a v1.1.6603.0, tal como se utiliz\u00f3 en Microsoft Malicious Software Removal Tool (MSRT), Windows Defender, Security Essentials, Forefront Client Security, Forefront Endpoint Protection 2010, y Windows Live OneCare, permite a usuarios locales conseguir privilegios a trav\u00e9s de un valor manipulado de una clave de registro de usuario sin especificar"}], "lastModified": "2017-08-17T01:33:23.493", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:forefront_client_security:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "769D4056-0E25-4A0A-B0E7-265AC188053A"}, {"criteria": "cpe:2.3:a:microsoft:forefront_endpoint_protection_2010:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43383FAA-0CD9-4D86-B957-814FE226D1E4"}, {"criteria": "cpe:2.3:a:microsoft:malicious_software_removal_tool:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEAB4CCB-8116-45EC-A261-D16A168C7198"}, {"criteria": "cpe:2.3:a:microsoft:malware_protection_engine:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F718BB5E-D0EA-497D-9085-C4462C029E37", "versionEndIncluding": "1.1.6502.0"}, {"criteria": "cpe:2.3:a:microsoft:malware_protection_engine:0.1.13.192:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8CEA6F8E-1A38-47FC-891C-326EAA8A9F6B"}, {"criteria": "cpe:2.3:a:microsoft:malware_protection_engine:1.1.3520.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A6EFC0F5-EB5E-4D34-9B8B-5C60CCC32D70"}, {"criteria": "cpe:2.3:a:microsoft:security_essentials:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3151D41-960B-4A4B-8585-07B1DCFEA454"}, {"criteria": "cpe:2.3:a:microsoft:windows_defender:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A458632B-D1AE-4643-A8F0-4295B506E341"}, {"criteria": "cpe:2.3:a:microsoft:windows_live_onecare:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4109D8E8-A385-4098-A983-FCF5F69CCD1F"}], "operator": "OR"}]}], "sourceIdentifier": "secure@microsoft.com"}