Security-Alerts mailing list archive (security-alerts@yandex-team.ru)
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[security-alerts] FW: [SA28051] Microsoft Windows Message Queuing Buffer Overflow
>
> TITLE:
> Microsoft Windows Message Queuing Buffer Overflow
>
> SECUNIA ADVISORY ID:
> SA28051
>
> VERIFY ADVISORY:
> http://secunia.com/advisories/28051/
>
> CRITICAL:
> Moderately critical
>
> IMPACT:
> System access
>
> WHERE:
> From local network
>
> OPERATING SYSTEM:
> Microsoft Windows 2000 Advanced Server
> http://secunia.com/product/21/
> Microsoft Windows 2000 Datacenter Server
> http://secunia.com/product/1177/
> Microsoft Windows 2000 Server
> http://secunia.com/product/20/
>
> DESCRIPTION:
> A vulnerability has been reported in Microsoft Windows, which can be
> exploited by malicious people to compromise a vulnerable system.
>
> The vulnerability is caused due to a boundary error in the Message
> Queuing Service (MSMQ) when processing MSMQ messages. This can be
> exploited to cause a buffer overflow by sending specially crafted
> packets to the MSMQ service.
>
> Successful exploitation allows execution of arbitrary code, but
> requires that the Message Queuing component is installed on the
> system (not installed by default).
>
> SOLUTION:
> Apply patch.
>
> Microsoft Windows 2000 Server SP4:
> http://www.microsoft.com/downloads/details.aspx?FamilyId=bda9d
> 0b4-f7cb-4d9d-b030-043d7437734b
>
> PROVIDED AND/OR DISCOVERED BY:
> The vendor credits:
> * ZDI
> * Venustech ADLABS
>
> ORIGINAL ADVISORY:
> MS07-065 (KB937894):
> http://www.microsoft.com/technet/security/Bulletin/MS07-065.mspx
>
|