Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2018-0886
PUBLISHED
More InfoOfficial Page
Assigner-microsoft
Assigner Org ID-f38d906d-7342-40ea-92c1-6c4a2c6478c8
View Known Exploited Vulnerability (KEV) details
Published At-14 Mar, 2018 | 17:00
Updated At-17 Sep, 2024 | 01:17
Rejected At-
▼CVE Numbering Authority (CNA)

The Credential Security Support Provider protocol (CredSSP) in Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how CredSSP validates request during the authentication process, aka "CredSSP Remote Code Execution Vulnerability".

Affected Products
Vendor
Microsoft CorporationMicrosoft Corporation
Product
Windows
Versions
Affected
  • Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703, and 1709 Windows Server 2016 and Windows Server, version 1709
Problem Types
TypeCWE IDDescription
textN/ARemote Code Execution
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securitytracker.com/id/1040506
vdb-entry
x_refsource_SECTRACK
http://www.securityfocus.com/bid/103265
vdb-entry
x_refsource_BID
https://ics-cert.us-cert.gov/advisories/ICSA-18-198-03
x_refsource_MISC
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0886
x_refsource_CONFIRM
https://blog.preempt.com/security-advisory-credssp
x_refsource_MISC
https://www.exploit-db.com/exploits/44453/
exploit
x_refsource_EXPLOIT-DB
https://github.com/preempt/credssp
x_refsource_MISC
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://www.securitytracker.com/id/1040506
vdb-entry
x_refsource_SECTRACK
x_transferred
http://www.securityfocus.com/bid/103265
vdb-entry
x_refsource_BID
x_transferred
https://ics-cert.us-cert.gov/advisories/ICSA-18-198-03
x_refsource_MISC
x_transferred
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0886
x_refsource_CONFIRM
x_transferred
https://blog.preempt.com/security-advisory-credssp
x_refsource_MISC
x_transferred
https://www.exploit-db.com/exploits/44453/
exploit
x_refsource_EXPLOIT-DB
x_transferred
https://github.com/preempt/credssp
x_refsource_MISC
x_transferred
Details not found