English | Deutsch | Español | Português
 UserID:
 Passwd:
 new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   		     Search 61204 CVE descriptions
and 32582 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.15456
Category:Windows
Title:Vulnerability in NetDDE Could Allow Code Execution (841533)
Summary:Determines if hotfix 841533 has been installed
Description:
The remote version of Windows is affected by a vulnerability in
Network Dynamic Data Exchange (NetDDE).

To exploit this flaw, NetDDE would have to be running and an attacker
with a specific knowledge of the vulnerability would need to send a malformed
NetDDE message to the remote host to overrun a given buffer.

Solution : http://www.microsoft.com/technet/security/bulletin/MS04-031.mspx
Risk factor : High
Cross-Ref: BugTraq ID: 11372
Common Vulnerability Exposure (CVE) ID: CVE-2004-0206
Bugtraq: 20041013 Microsoft Windows NetDDE Service Buffer Overflow (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=109786703930674&w=2
Microsoft Security Bulletin: MS04-031
http://www.microsoft.com/technet/security/bulletin/ms04-031.asp
CERT/CC vulnerability note: VU#640488
http://www.kb.cert.org/vuls/id/640488
http://www.securityfocus.com/bid/11372
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:1852
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2394
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3120
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3242
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4592
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5074
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6788
XForce ISS Database: win-netdde-bo(16556)
http://xforce.iss.net/xforce/xfdb/16556
XForce ISS Database: win-ms04031-patch(17657)
http://xforce.iss.net/xforce/xfdb/17657
http://secunia.com/advisories/12803/
CopyrightThis script is Copyright (C) 2004 Tenable Network Security

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  
 Forgot userid or passwd?
Email/Userid:



Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2013 E-Soft Inc. All rights reserved.