What is CVE-2011-0660?

CVE-2011-0660 is a vulnerability in Microsoft Windows_2003_server, classified under Improper Input Validation. Published 2011-04-13.

Is CVE-2011-0660 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Improper input validation in Microsoft Windows_2003_server

CVE-2011-0660

The SMB client in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP1 and SP2, Windows Server 2008 Gold, SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows remote SMB servers to execute arbitrary code via a cra…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.516 (98.0th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-20 — Improper Input Validation

Public proof-of-concept exploits

aRustyDev/C844

References

71772 (x_refsource_OSVDB, vdb-entry)
TA11-102A (US Government Resource, x_refsource_CERT, third-party-advisory)
1025328 (vdb-entry, x_refsource_SECTRACK)
47239 (vdb-entry, x_refsource_BID)
ADV-2011-0938 (vdb-entry, x_refsource_VUPEN)
oval:org.mitre.oval:def:11995 (x_refsource_OVAL, signature, vdb-entry)
MS11-019 (x_refsource_MS, vendor-advisory)

Frequently asked questions

What is CVE-2011-0660?: CVE-2011-0660 is a vulnerability in Microsoft Windows_2003_server, classified under Improper Input Validation. Published 2011-04-13.
Is CVE-2011-0660 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.