Microsoft Windows DNS Service RPC Stack Overflow Lets Remote Users Execute Arbitrary Code
2007-04-16 09:49
731 查看
Version(s): Windows 2000 Server SP4, Windows Server 2003 SP1, and Windows 2003 SP2 |
Description: A vulnerability was reported in the Windows DNS service RPC interface. A remote user can execute arbitrary code on the target system. A remote user can send a specially crafted RPC packet to the RPC interface of the DNS server to trigger a stack overflow and execute arbitrary code on the target system. The code will run with the privileges of the target DNS service, which runs with Local System privileges by default. A remote authenticated user can also exploit this vulnerability via TCP/UDP port 445. The name resolution function running on port 53 is not affected. The vulnerable code resides on Windows server systems, not client systems. Windows 2000 Professional SP4, Windows XP SP2, and Windows Vista are not affected. This vulnerability is being actively exploited in limited situations. Carnegie Mellon reported this vulnerability to Microsoft. |
Impact: A remote user can execute arbitrary code on the target system. |
Solution: No solution was available at the time of this entry. Microsoft is working on a fix. The Microsoft advisory is available at: http://www.microsoft.com/technet/security/advisory/935964.mspx |
Vendor URL: www.microsoft.com/technet/security/advisory/935964.mspx (Links to External Site) |
Cause: Boundary error |
Underlying OS: Windows (2000), Windows (2003) |
相关文章推荐
- Microsoft Windows DHCP Client Service Remote Buffer Overflow
- Microsoft Windows DHCP Client Service Remote Buffer Overflow
- MS Windows DNS RPC Remote Buffer Overflow Exploit (win2k SP4)
- Microsoft Windows DNS RPC Buffer Overflow
- Defeating the Stack Based Buffer Overflow Prevention Mechanism of Microsoft Windows 2003 Server
- IBM AIX 'rpc.cmsd' Calendar Daemon Remote Stack Buffer Overflow Vulnerability
- Microsoft IIS FTP Service Remote Buffer Overflow Vulnerability
- Microsoft Windows NetDDE Remote Buffer Overflow Exploit (MS04-031)
- Microsoft Windows NetDDE Remote Buffer Overflow Exploit (MS04-031)
- IBM AIX 'rpc.cmsd' Calendar Daemon Remote Stack Buffer Overflow Vulnerability
- Sun Java Web Server version 7.0 update 7 remote stack overflow exploit
- 跟本菜菜一起去体验Microsoft Windows Server Code Name "Longhorn" Server Core 推荐
- WordPress Woopra plugin remote PHP arbitrary code execution exploit.
- Windows WorkStation Remote BufferOverflow
- Unable to execute dex: java.nio.BufferOverflowException. Check the Eclipse log for stack trace.
- com.google.gwt.user.client.rpc.IncompatibleRemoteServiceException: This application is out of date, please click the refresh but
- 【转】How To: Host a Remote Object in a Windows Service
- Host a Remote Object in a Windows Service
- Microsoft.Excel.Formula.Size.Stack.Overflow
- To start or stop dbconsole as a service on Microsoft Windows: