Microsoft Windows Workstation Service Could Allow Code Execution
Data de publicação: 14 junho 2016
Schweregrad: : Alto
Identificador(es) CVE: : CVE-2003-0812
Data do informe: 14 junho 2016
Descrição
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
Exposição das informações
- 1000817 - Microsoft Windows Workstation RPC Stack Overflow
Solução
Trend Micro Deep Security DPI Rule Number: 1000817
Trend Micro Deep Security DPI Rule Name: 1000817 - Microsoft Windows Workstation RPC Stack Overflow
Software infectado e versão:
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP3
- Microsoft Windows 2000 Advanced Server SP4
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP3
- Microsoft Windows 2000 Datacenter Server SP4
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP4
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP3
- Microsoft Windows 2000 Server SP4
- Microsoft Windows XP 64-bit
- Microsoft Windows XP 64-bit SP1
- Microsoft Windows XP Home
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Media Center
- Microsoft Windows XP Professional
- Microsoft Windows XP Professional SP1