English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 75803 CVE descriptions
and 40037 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.11790
Category:Windows : Microsoft Bulletins
Title:Buffer overrun in RPC Interface (824146)
Summary:Checks for hotfix Q824146
Description:
The remote host is running a version of Windows which has a flaw in
its RPC interface, which may allow an attacker to execute arbitrary code
and gain SYSTEM privileges.

Solution : see http://www.microsoft.com/technet/security/bulletin/ms03-039.mspx

Risk factor : High
Cross-Ref: BugTraq ID: 8205
BugTraq ID: 8458
BugTraq ID: 8460
Common Vulnerability Exposure (CVE) ID: CAN-2003-0352
Bugtraq: 20030716 [LSD] Critical security vulnerability in Microsoft Operating Systems (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=105838687731618&w=2
Bugtraq: 20030725 The Analysis of LSD's Buffer Overrun in Windows RPC Interface(code revised ) (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=105914789527294&w=2
http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007079.html
http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007357.html
http://www.xfocus.org/documents/200307/2.html
http://www.microsoft.com/technet/security/bulletin/MS03-026.asp
http://www.cert.org/advisories/CA-2003-16.html
http://www.cert.org/advisories/CA-2003-19.html
CERT/CC vulnerability note: VU#568148
http://www.kb.cert.org/vuls/id/568148
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:194
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2343
XForce ISS Database: win-rpc-dcom-bo(12629)
http://xforce.iss.net/xforce/xfdb/12629
http://www.securityfocus.com/bid/8205
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:296
Common Vulnerability Exposure (CVE) ID: CAN-2003-0715
Bugtraq: 20030910 EEYE: Microsoft RPC Heap Corruption Vulnerability - Part II (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=106322856608909&w=2
http://www.microsoft.com/technet/security/bulletin/MS03-039.asp
http://www.cert.org/advisories/CA-2003-23.html
CERT/CC vulnerability note: VU#483492
http://www.kb.cert.org/vuls/id/483492
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:264
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1202
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1813
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:20
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4224
Common Vulnerability Exposure (CVE) ID: CAN-2003-0528
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0100.html
http://www.nsfocus.com/english/homepage/research/0306.htm
Bugtraq: 20030920 The Analysis of RPC Long Filename Heap Overflow AND a Way to Write Universal Heap Overflow of Windows (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=106407417011430&w=2
CERT/CC vulnerability note: VU#254236
http://www.kb.cert.org/vuls/id/254236
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:127
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2884
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2968
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3966
Common Vulnerability Exposure (CVE) ID: CAN-2003-0605
Bugtraq: 20030720 Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=105880332428706&w=2
http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/006851.html
CERT/CC vulnerability note: VU#326746
http://www.kb.cert.org/vuls/id/326746
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:494
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1118
CopyrightThis script is Copyright (C) 2003 Jeffrey Adams

This is only one of 40037 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.