NVD

Id
11811  
Name
CVE-2010-0240  
Description
The TCP/IP implementation in Microsoft Windows Vista Gold, SP1, and SP2 and Server 2008 Gold and SP2, when a custom network driver is used, does not properly handle local fragmentation of Encapsulating Security Payload (ESP) over UDP packets, which allows remote attackers to execute arbitrary code via crafted packets, aka "Header MDL Fragmentation Vulnerability."  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-18  
Published
2010-02-10  
Modified Date
2010-08-21  
Seq
2010-0240  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
65082 11811 CVE-2010-0240 oval:org.mitre.oval:def:8400  View
65083 11811 CVE-2010-0240 MS10-009  View
65084 11811 CVE-2010-0240 TA10-040A  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
35313 JVNDB-2010-001093 Microsoft Windows の TCP/IP 実装における任意のコードを実行される脆弱性 Microsoft Windows の TCP/IP 実装には、カスタムネットワークドライバが使用されている場合、UDP 経由の Encapsulating Security Payload (ESP) の断片化を適切に処理しないため、任意のコードを実行される脆弱性が存在します。 CVE-2010-0240 42820 CVE-2010-0240 11811 10 http://jvndb.jvn.jp/ja/contents/2010/JVNDB-2010-001093.html 2010-02-09 2010-03-01 View