NVD

Id
53717  
Name
CVE-2007-1533  
Description
The Teredo implementation in Microsoft Windows Vista uses the same nonce for communication with different UDP ports within a solicitation session, which makes it easier for remote attackers to spoof the nonce through brute force attacks.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2007-03-20  
Modified Date
2008-11-13  
Seq
2007-1533  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
272172 53717 CVE-2007-1533 20070313 New report on Windows Vista network attack surface  View
272173 53717 CVE-2007-1533 20070403 Nine Vista CVEs, including Microsoft inaccurate Teredo use case documentation  View
272174 53717 CVE-2007-1533 23301  View
272175 53717 CVE-2007-1533 http://www.symantec.com/avcenter/reference/Vista_Network_Attack_Surface_RTM.pdf  View
272176 53717 CVE-2007-1533 http://www.symantec.com/enterprise/security_response/weblog/2007/04/microsofts_inaccurate_teredo_d.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
54852 JVNDB-2007-003544 Microsoft Windows Vista の Teredo 実装における総当り攻撃を通して nonce を偽造される脆弱性 Microsoft Windows Vista の Teredo 実装は、セッション内で同じ nonce を使用して異なる UDP ポートと通信するため、総当り攻撃を通して nonce を偽造される脆弱性が存在します。 CVE-2007-1533 24888 CVE-2007-1533 53717 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-003544.html 2007-03-20 2012-09-25 View