CVE-2009-1930
First published: Wed Aug 12 2009(Updated: )
The Telnet service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allows remote Telnet servers to execute arbitrary code on a client machine by replaying the NTLM credentials of a client user, aka "Telnet Credential Reflection Vulnerability," a related issue to CVE-2000-0834.
Credit: secure@microsoft.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | =sp4 | |
| Microsoft Windows Server 2003 | =sp2 | |
| Microsoft Windows Server 2003 | =sp2 | |
| Microsoft Windows Server 2003 | =sp2 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | ||
| Microsoft Windows Server | ||
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Server | =sp2 | |
| Microsoft Windows Vista | =sp1 | |
| Microsoft Windows Vista | =sp2 | |
| Microsoft Windows Vista | ||
| Microsoft Windows Vista | =sp1 | |
| Microsoft Windows Vista | =sp2 | |
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp2 | |
| Microsoft Windows XP | =sp3 | |
| Microsoft Windows Vista | =sp2 | |
| Microsoft Windows Vista | =sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/35993
- http://secunia.com/advisories/36222
- http://securitytracker.com/id?1022716
- http://www.vupen.com/english/advisories/2009/2237
- http://osvdb.org/56904
- http://www.us-cert.gov/cas/techalerts/TA09-223A.html
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6302
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-042
Frequently Asked Questions
What are the potential risks associated with CVE-2009-1930?
CVE-2009-1930 allows remote Telnet servers to execute arbitrary code on vulnerable client machines by replaying NTLM credentials.
Which software is affected by CVE-2009-1930?
CVE-2009-1930 affects Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista, and Server 2008 versions.
What is the severity of CVE-2009-1930?
CVE-2009-1930 is considered critical due to its ability to allow remote code execution.
How can organizations mitigate the risks of CVE-2009-1930?
Organizations can mitigate CVE-2009-1930 by disabling the Telnet service and applying applicable security updates from Microsoft.
When was CVE-2009-1930 discovered?
CVE-2009-1930 was disclosed in 2009 and is known for exploiting Telnet services in Windows-based systems.
- agent/references
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- agent/severity
- agent/event
- agent/weakness
- agent/remedy
- agent/description
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-historical
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows 2000
- version/microsoft windows 2000/sp4
- canonical/microsoft windows server 2003
- version/microsoft windows server 2003/sp2
- canonical/microsoft windows server
- version/microsoft windows server/sp2
- canonical/microsoft windows vista
- version/microsoft windows vista/sp1
- version/microsoft windows vista/sp2
- canonical/microsoft windows xp
- version/microsoft windows xp/sp2
- version/microsoft windows xp/sp3