CVE-2017-11786

UNKNOWN

Published 2017-10-13T13:00:00Z

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-11786. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

Skype for Business in Microsoft Lync 2013 SP1 and Skype for Business 2016 allows an attacker to steal an authentication hash that can be reused elsewhere, due to how Skype for Business handles authentication requests, aka "Skype for Business Elevation of Privilege Vulnerability."

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Microsoft Corporation

Skype for Business

Affected Versions:

Microsoft Lync 2013 SP1 and Skype for Business 2016

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-2xjh-35wj-vw46

Advisory Details

CVSS Scoring

CVSS Score

7.5

CVSS Vector


                                    CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-11786

WEB https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11786

WEB http://www.securityfocus.com/bid/101156

WEB http://www.securitytracker.com/id/1039530

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: May 13, 2022

References

http://www.securityfocus.com/bid/101156

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2017-11786

http://www.securitytracker.com/id/1039530

Published: 2017-10-13T13:00:00Z

Last Modified: 2024-09-16T18:03:43.734Z

Copied to clipboard!

CVE-2017-11786

Expert Analysis

Description

Available Exploits

Related News

Affected Products

Skype for Business

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!