Microsoft Windows Workstation Service Could Allow Code Execution
Gravità: : Alto
Identificatori CVE: CVE-2003-0812
Data notifica: 14 giugno 2016
Descrizione
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
Informazioni esposizione:
- 1000817 - Microsoft Windows Workstation RPC Stack Overflow
Soluzioni
Trend Micro Deep Security DPI Rule Number: 1000817
Trend Micro Deep Security DPI Rule Name: 1000817 - Microsoft Windows Workstation RPC Stack Overflow
Software e versione interessati:
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP3
- Microsoft Windows 2000 Advanced Server SP4
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP3
- Microsoft Windows 2000 Datacenter Server SP4
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP4
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP3
- Microsoft Windows 2000 Server SP4
- Microsoft Windows XP 64-bit
- Microsoft Windows XP 64-bit SP1
- Microsoft Windows XP Home
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Media Center
- Microsoft Windows XP Professional
- Microsoft Windows XP Professional SP1