MS10-086 MS10-086 - Moderate: Vulnerability in Windows Shared Cluster Disks Could Allow Tampering (2294255)
Moderate2010-10-12 Bulletin Severity Rating:Moderate - This security update resolves a privately reported vulnerability in Windows shared cluster disks. The vulnerability could allow data tampering on the administrative shares of failover cluster disks. By default, Windows Server 2008 R2 servers are not affected by this vulnerability. This vulnerability only applies to cluster disks used in a failover cluster.
Bulletin details at Microsoft.com
Bulletin details at Microsoft.com
Related CVE Entries
The user interface in Microsoft Cluster Service (MSCS) in Microsoft Windows Server 2008 R2 does not properly set administrative-share permissions for new cluster disks that are shared as part of a failover cluster, which allows remote attackers to read or modify data on these disks via requests to the associated share, aka "Permissions on New Cluster Disks Vulnerability."
Max CVSS
7.5
EPSS Score
0.67%
Published
2010-10-13
Updated
2018-10-12