Microsoft Windows Workstation Service Could Allow Code Execution
2016年6月14日
危険度: : 高
CVE識別番号: CVE-2003-0812
概要
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
トレンドマイクロの対策
- 1000817 - Microsoft Windows Workstation RPC Stack Overflow
対応方法
Trend Micro Deep Security DPI Rule Number: 1000817
Trend Micro Deep Security DPI Rule Name: 1000817 - Microsoft Windows Workstation RPC Stack Overflow
影響を受けるソフトウェア
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP3
- Microsoft Windows 2000 Advanced Server SP4
- Microsoft Windows 2000 Datacenter Server
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP3
- Microsoft Windows 2000 Datacenter Server SP4
- Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP3
- Microsoft Windows 2000 Professional SP4
- Microsoft Windows 2000 Server
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP3
- Microsoft Windows 2000 Server SP4
- Microsoft Windows XP 64-bit
- Microsoft Windows XP 64-bit SP1
- Microsoft Windows XP Home
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Media Center
- Microsoft Windows XP Professional
- Microsoft Windows XP Professional SP1