Content
(MS08-047) Microsoft IPSec Policy Information Disclosure Vulnerability (953733)
- Type
- Misconfiguration
- Impact of exploitation
- Information disclosure
- User Interaction
- no user interaction is needed
- Attack Vector
- Local Application
- Rating
- Medium
- CVE reference
- CVE-2008-2246 ,
- Vendor Status
- Responded and patched
- Vulnerable systems
- Windows Vista SP1,
- Windows 2008,
- Summary
- A vulnerability is present in Microsoft Windows that may allow for information disclosure. Exploitation would allow for IPSec traffic to be displayed unencrypted.
Tab Navigation
Description
Microsoft Windows is an industry standard operating system. A vulnerability is present in Microsoft Windows that may allow for information disclosure. The flaw lies in improper importation of 2003 domain IPSec policies. IPSec that is intended to be encrypted would be viewable to those sniffing the network.
McAfee Product Mitigation & Recommendations
Recommendations
Download and install the patch available from Microsoft (953733): http://www.microsoft.com/technet/security/Bulletin/MS08-047.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-047) Microsoft IPSec Policy Information Disclosure Vulnerability (953733)
- Signature identifier:
- 6059
- Release date:
- 8/12/2008
Additional Resources
Microsoft Security Bulletin: Vulnerability in IPSec Group Policy Could Allow Information Disclosure (953733)
http://www.microsoft.com/technet/security/Bulletin/MS08-047.mspx
All Information
Timeline -
8/12/2008
Vendor has provided a patch.
Description -
Microsoft Windows is an industry standard operating system. A vulnerability is present in Microsoft Windows that may allow for information disclosure. The flaw lies in improper importation of 2003 domain IPSec policies. IPSec that is intended to be encrypted would be viewable to those sniffing the network.
McAfee Product Mitigation & Recommendations
Recommendations -
Download and install the patch available from Microsoft (953733): http://www.microsoft.com/technet/security/Bulletin/MS08-047.mspx
McAfee Product Mitigation
McAfee Foundstone
This Foundstone vulnerability check can be used to assess if your systems are vulnerable and is expected to accurately identify if a system is vulnerable in many enterprise environments.
- Signature:
- (MS08-047) Microsoft IPSec Policy Information Disclosure Vulnerability (953733)
- Signature identifier:
- 6059
- Release date:
- 8/12/2008
Additional Resources
Additional Resources -
Microsoft Security Bulletin: Vulnerability in IPSec Group Policy Could Allow Information Disclosure (953733)
http://www.microsoft.com/technet/security/Bulletin/MS08-047.mspx
