Microsoft Windows DNS Server RPC Buffer Overflow
Severity: : Critical
CVE Kennungen: : CVE-2007-1748,MS07-029
Advisory Date: 01 lutego 2016
DESCRIPTION
Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.
INFORMATION EXPOSURE
- 1001925 - Port Mapper Decoder DNS RPC Service
- 1001925 - Port Mapper Decoder DNS RPC Service
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000986
Trend Micro Deep Security DPI Rule Name: 1000986 - Microsoft Windows DNS Server RPC Buffer Overflow
AFFECTED SOFTWARE AND VERSION:
- Microsoft Windows Server 2000 SP4
- Microsoft Windows Server 2003 SP1
- Microsoft Windows Server 2003 SP2