CVE-2012-0151

Published Apr 10, 2012

Last updated 4 days ago

Exploit known CVSS high 7.8

Overview

Description: The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute arbitrary code via a modified file with additional content, aka "WinVerifyTrust Signature Validation Vulnerability."
Source: secure@microsoft.com
NVD status: Analyzed
Products: windows_7, windows_server_2003, windows_server_2008, windows_vista, windows_xp

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 9.3
Impact score: 10
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:C/I:C/A:C

Known exploits

Data from CISA

Vulnerability name: Microsoft Windows Authenticode Signature Verification Remote Code Execution Vulnerability
Exploit added on: Jun 8, 2022
Exploit action due: Jun 22, 2022
Required action: Apply updates per vendor instructions.

Weaknesses

nvd@nist.gov: CWE-20
134c704f-9b21-4f2e-91b3-4a467353bcc0: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x64:*",
            "matchCriteriaId": "7FE8B00B-4F39-4755-A323-8AD71F5E3EBE",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:x86:*",
            "matchCriteriaId": "06BBFA69-94E2-4BAB-AFD3-BC434B11D106",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*",
            "matchCriteriaId": "1D929AA2-EE0B-4AA1-805D-69BCCA11B77F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:itanium:*",
            "matchCriteriaId": "FFFD8C6B-7A46-484C-8701-81D58AB1C2CF",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:x64:*",
            "matchCriteriaId": "2127D10C-B6F3-4C1D-B9AA-5D78513CC996",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:itanium:*",
            "matchCriteriaId": "B20DD263-5A62-4CB1-BD47-D1F9A6C67E08",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:x64:*",
            "matchCriteriaId": "B7674920-AE12-4A25-BE57-34AEDDA74D76",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*",
            "matchCriteriaId": "BF1AD1A1-EE20-4BCE-9EE6-84B27139811C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:*:*:x64:*",
            "matchCriteriaId": "BADB0479-3E0E-4326-B568-9DBDCACF0B5E",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*",
            "matchCriteriaId": "C9392D35-7BF5-48E9-879B-BBDE9A9E9AB9",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows_7:-:sp1:*:*:*:*:*:*",
            "matchCriteriaId": "C2B1C231-DE19-4B8F-A4AA-5B3A65276E46",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2003:-:sp2:*:*:*:*:*:*",
            "matchCriteriaId": "1D929AA2-EE0B-4AA1-805D-69BCCA11B77F",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:-:sp2:*:*:*:*:*:*",
            "matchCriteriaId": "5F422A8C-2C4E-42C8-B420-E0728037E15C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:*:*:*:*:*:*:*",
            "matchCriteriaId": "36559BC0-44D7-48B3-86FF-1BFF0257B5ED",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_server_2008:r2:sp1:*:*:*:*:*:*",
            "matchCriteriaId": "2ACA9287-B475-4AF7-A4DA-A7143CEF9E57",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_vista:-:sp2:*:*:*:*:*:*",
            "matchCriteriaId": "BF1AD1A1-EE20-4BCE-9EE6-84B27139811C",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp2:*:*:professional:*:x64:*",
            "matchCriteriaId": "C6109348-BC79-4ED3-8D41-EA546A540C79",
            "vulnerable": true
          },
          {
            "criteria": "cpe:2.3:o:microsoft:windows_xp:-:sp3:*:*:*:*:*:*",
            "matchCriteriaId": "C9392D35-7BF5-48E9-879B-BBDE9A9E9AB9",
            "vulnerable": true
          }
        ],
        "negate": false,
        "operator": "OR"
      }
    ]
  }
]

References

Sources include official advisories and independent security research.

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

Related CVEs

References