Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Windows >> Microsoft RPC Interface Buffer Overrun (KB824146) (network check)


Vulnerability Assessment Details

Microsoft RPC Interface Buffer Overrun (KB824146) (network check)

Vulnerability Assessment Summary
Checks if the remote host has a patched RPC interface (KB824146)

Detailed Explanation for this Vulnerability Assessment

Summary :

Arbitrary code can be executed on the remote host.

Description :

The remote host is running a version of Windows which has a flaw in
its RPC interface, which may permit a possible hacker to execute arbitrary code
and gain SYSTEM rights.

A possible hacker or a worm could use it to gain the control of this host.

Note that this is NOT the same bug as the one described in MS03-026
which fixes the flaw exploited by the 'MSBlast' (or LoveSan) worm.

Solution :

http://www.microsoft.com/technet/security/bulletin/MS03-039.mspx

Network Security Threat Level:

Critical / CVSS Base Score : 10
(AV:R/AC:L/Au:NR/C:C/A:C/I:C/B:N)

Networks Security ID: 8458, 8460

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

1pcs USB 2.0 unique iron man model 8G Enough Memory Stick Flash pen Drive //A1
$0.01
1pcs USB 2.0 unique iron man model 8G Enough Memory Stick Flash pen Drive //A1 pictureServer RAM 32GB 8x 4GB FIT Dell Poweredge 2970 SC1435 6950 R300 PC2-5300P Memory
$24.95
Server RAM 32GB 8x 4GB FIT Dell Poweredge 2970 SC1435 6950 R300 PC2-5300P Memory pictureLenovo - 11.6" Refurbished Chromebook - Intel Celeron - 4GB Memory - 16GB Sol...
$154.99
Lenovo - 11.6


Discussions

No Discussions have been posted on this vulnerability.