CVE-2009-0085
First published: Tue Mar 10 2009(Updated: )
The Secure Channel (aka SChannel) authentication component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, when certificate authentication is used, does not properly validate the client's key exchange data in Transport Layer Security (TLS) handshake messages, which allows remote attackers to spoof authentication by crafting a TLS packet based on knowledge of the certificate but not the private key, aka "SChannel Spoofing Vulnerability."
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | =sp4 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =sp1 | |
| Microsoft Windows Server | =sp1 | |
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Vista | ||
| Microsoft Windows Vista | =sp1 | |
| Microsoft Windows Vista | =gold | |
| Microsoft Windows XP | ||
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp3 | |
| Microsoft Windows Vista | =sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securitytracker.com/id?1021828
- http://secunia.com/advisories/34215
- http://www.vupen.com/english/advisories/2009/0660
- http://osvdb.org/52521
- http://www.us-cert.gov/cas/techalerts/TA09-069A.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6011
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-007
Frequently Asked Questions
What is the severity of CVE-2009-0085?
CVE-2009-0085 is classified as a critical vulnerability due to improper validation in the Secure Channel, leading to possible exploitation.
How do I fix CVE-2009-0085?
To fix CVE-2009-0085, you should apply the relevant security updates provided by Microsoft for the affected operating systems.
Which Microsoft products are affected by CVE-2009-0085?
CVE-2009-0085 affects Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP1 and SP2, Windows Vista, and Windows Server 2008.
What type of vulnerability is CVE-2009-0085?
CVE-2009-0085 is a security vulnerability related to certificate authentication in the Transport Layer Security (TLS) implementation.
What can attackers achieve by exploiting CVE-2009-0085?
Attackers exploiting CVE-2009-0085 may gain unauthorized access by bypassing security measures due to the faulty key exchange validation.
- agent/author
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/event
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows 2000
- version/microsoft windows 2000/sp4
- canonical/microsoft windows server
- version/microsoft windows server/sp1
- version/microsoft windows server/sp2
- canonical/microsoft windows vista
- version/microsoft windows vista/sp1
- version/microsoft windows vista/gold
- canonical/microsoft windows xp
- version/microsoft windows xp/sp2
- version/microsoft windows xp/sp3