Microsoft Windows DNS Server RPC Buffer Overflow
Publish Date: 01 février 2016
Gravité: : Critique
Identifiant(s) CVE: : CVE-2007-1748,MS07-029
Date du conseil: 01 février 2016
Description
Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.
Information Exposure Rating:
- 1001925 - Port Mapper Decoder DNS RPC Service
- 1001925 - Port Mapper Decoder DNS RPC Service
Solutions
Trend Micro Deep Security DPI Rule Number: 1000986
Trend Micro Deep Security DPI Rule Name: 1000986 - Microsoft Windows DNS Server RPC Buffer Overflow
Affected software and version:
- Microsoft Windows Server 2000 SP4
- Microsoft Windows Server 2003 SP1
- Microsoft Windows Server 2003 SP2