Host is missing an important security update for Microsoft Windows 7, Windows Server 2008, Windows Server 2003, Windows Server 2008 R2 and Windows XP - MS11-013ID: oval:org.secpod.oval:def:1038 | Date: (C)2011-05-23 (M)2022-09-09 |
Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS11-013. The update is required to fix elevation of privilege vulnerability in Windows 7 or Windows Server 2003 or Windows Server 2008 R2 x64 or Windows XP. The flaws are present in the implementation of Kerberos which supports a weak hashing mechanism and fails to correctly enforce stronger default encryption standards. Successful exploitation allows an attacker to run arbitrary code in kernel mode and mpersonate the user who was authenticating during that Kerberos session.
Platform: |
Microsoft Windows 7 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows XP |