Vulnerability Details : CVE-2009-0085

The Secure Channel (aka SChannel) authentication component in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, and Server 2008, when certificate authentication is used, does not properly validate the client's key exchange data in Transport Layer Security (TLS) handshake messages, which allows remote attackers to spoof authentication by crafting a TLS packet based on knowledge of the certificate but not the private key, aka "SChannel Spoofing Vulnerability."

Vulnerability category: BypassGain privilege

Published 2009-03-10 20:30:07

Updated 2023-12-07 18:38:57

Source Microsoft Corporation

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2009-0085

Probability of exploitation activity in the next 30 days: 91.75%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2009-0085

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.1	HIGH	AV:N/AC:M/Au:N/C:N/I:C/A:N	8.6	6.9	nvd@nist.gov
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Complete Availability Impact: None

CWE ids for CVE-2009-0085

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2009-0085

http://www.securitytracker.com/id?1021828
http://secunia.com/advisories/34215

About Secunia Research | Flexera
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-007

Microsoft Security Bulletin MS09-007 - Important | Microsoft Learn
http://www.us-cert.gov/cas/techalerts/TA09-069A.html

Microsoft Updates for Multiple Vulnerabilities | CISA
US Government Resource

CVEs referencing this url
http://www.vupen.com/english/advisories/2009/0660

Webmail: access your OVH emails on ovhcloud.com | OVHcloud
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6011

404 Not Found
http://osvdb.org/52521

Products affected by CVE-2009-0085

Microsoft » Windows 2000 » Update SP4
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP2 X64 Edition
cpe:2.3:o:microsoft:windows_xp:*:sp2:x64:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP2
cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » X64 Edition
cpe:2.3:o:microsoft:windows_xp:*:*:x64:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP3
cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2003
cpe:2.3:o:microsoft:windows_server_2003:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2003 » Update SP2
cpe:2.3:o:microsoft:windows_server_2003:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2003 » Update SP1 Itanium Edition
cpe:2.3:o:microsoft:windows_server_2003:*:sp1:itanium:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2003 » Update SP1
cpe:2.3:o:microsoft:windows_server_2003:*:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows Vista » X64 Edition
cpe:2.3:o:microsoft:windows_vista:*:*:x64:*:*:*:*:*
Matching versions
Microsoft » Windows Vista » Update SP1
cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows Vista » Version: Gold
cpe:2.3:o:microsoft:windows_vista:gold:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008
cpe:2.3:o:microsoft:windows_server_2008:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008 » Itanium Edition
cpe:2.3:o:microsoft:windows_server_2008:*:*:itanium:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2008 » X64 Edition
cpe:2.3:o:microsoft:windows_server_2008:*:*:x64:*:*:*:*:*
Matching versions