Windows : Microsoft Bulletins : Vulnerability in Microsoft ISA Server 2000 H.323 Filter (816458)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.11992

Kategorie: Windows : Microsoft Bulletins

Titel: Vulnerability in Microsoft ISA Server 2000 H.323 Filter (816458)

Zusammenfassung: A security vulnerability exists in the H.323 filter for Microsoft Internet; Security and Acceleration Server 2000 that could allow an attacker; to overflow a buffer in the Microsoft Firewall Service in Microsoft Internet; Security and Acceleration Server 2000.

Beschreibung: Summary:
A security vulnerability exists in the H.323 filter for Microsoft Internet
Security and Acceleration Server 2000 that could allow an attacker
to overflow a buffer in the Microsoft Firewall Service in Microsoft Internet
Security and Acceleration Server 2000.

Vulnerability Impact:
An attacker who successfully exploited this vulnerability could try to run
code of their choice in the security context of the Microsoft Firewall Service.
This would give the attacker complete control over the system.
The H.323 filter is enabled by default on servers running ISA Server 2000
computers that are installed in integrated or firewall mode.

Affected Software/OS:
Microsoft ISA 2000 Gold, SP1.

Solution:
Users using any of the affected
products should install the patch immediately.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2003-0819
BugTraq ID: 9406
http://www.securityfocus.com/bid/9406
BugTraq ID: 9408
http://www.securityfocus.com/bid/9408
http://www.cert.org/advisories/CA-2004-01.html
CERT/CC vulnerability note: VU#749342
http://www.kb.cert.org/vuls/id/749342
http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
Microsoft Security Bulletin: MS04-001
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-001
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A478
http://www.securitytracker.com/id?1008698
http://secunia.com/advisories/10611

Copyright Copyright (C) 2004 Jeff Adams

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.11992
Kategorie:	Windows : Microsoft Bulletins
Titel:	Vulnerability in Microsoft ISA Server 2000 H.323 Filter (816458)
Zusammenfassung:	A security vulnerability exists in the H.323 filter for Microsoft Internet; Security and Acceleration Server 2000 that could allow an attacker; to overflow a buffer in the Microsoft Firewall Service in Microsoft Internet; Security and Acceleration Server 2000.
Beschreibung:	Summary: A security vulnerability exists in the H.323 filter for Microsoft Internet Security and Acceleration Server 2000 that could allow an attacker to overflow a buffer in the Microsoft Firewall Service in Microsoft Internet Security and Acceleration Server 2000. Vulnerability Impact: An attacker who successfully exploited this vulnerability could try to run code of their choice in the security context of the Microsoft Firewall Service. This would give the attacker complete control over the system. The H.323 filter is enabled by default on servers running ISA Server 2000 computers that are installed in integrated or firewall mode. Affected Software/OS: Microsoft ISA 2000 Gold, SP1. Solution: Users using any of the affected products should install the patch immediately. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0819 BugTraq ID: 9406 http://www.securityfocus.com/bid/9406 BugTraq ID: 9408 http://www.securityfocus.com/bid/9408 http://www.cert.org/advisories/CA-2004-01.html CERT/CC vulnerability note: VU#749342 http://www.kb.cert.org/vuls/id/749342 http://www.uniras.gov.uk/vuls/2004/006489/h323.htm Microsoft Security Bulletin: MS04-001 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-001 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A478 http://www.securitytracker.com/id?1008698 http://secunia.com/advisories/10611
Copyright	Copyright (C) 2004 Jeff Adams