危険度: 緊急
  CVE識別番号: CVE-2006-4691

  概要

Stack-based buffer overflow in the NetpManageIPCConnect function in the Workstation service (wkssvc.dll) in Microsoft Windows 2000 SP4 and XP SP2 allows remote attackers to execute arbitrary code via NetrJoinDomain2 RPC messages with a long hostname.

  トレンドマイクロの対策

Apply associated Trend Micro DPI Rules.

  対応方法

  Trend Micro Deep Security DPI Rule Number: 1000851
  Trend Micro Deep Security DPI Rule Name: 1000851 - Microsoft Workstation Service Remote Code Execution

  影響を受けるソフトウェア

  • Microsoft Windows 2000 SP4
  • Microsoft Windows XP SP2