Home

CVE-2010-0812

Description

Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to bypass intended IPv4 source-address restrictions via a mismatched IPv6 source address in a tunneled ISATAP packet, aka ISATAP IPv6 Source Address Spoofing Vulnerability.

Risk Information

Base Score
7.5
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
51.292

Associated Vulnerability

VulnerabilityOS Platform
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows XP (KB978338) x86 based systemsWindows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows XP (KB978338) x86 based systems for SP3Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2003 (KB978338)Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista (KB978338) x86 based systemsWindows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista (KB978338) x86 based systems for SP1Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista (KB978338) x86 based systems for SP2Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2008 (KB978338) x86 based systemsWindows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2008 (KB978338) x86 based systems for SP2Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows XP x64 Edition (KB978338)Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2003 x64 Edition (KB978338)Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista for x64-based Systems (KB978338)Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista for x64-based Systems (KB978338) for SP1Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Vista for x64-based Systems (KB978338) for SP2Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2008 x64 Edition (KB978338)Windows
ms10-029: vulnerability in windows isatap component could allow spoofing for Windows Server 2008 x64 Edition (KB978338) for SP2Windows

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-8469Security Update for Windows Server 2008 (KB978338)
PATCH-8476Security Update for Windows Server 2008 x64 Edition (KB978338)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234