27845 : Microsoft Windows Server Service Crafted RPC Message Remote Overflow
Printer | http://osvdb.org/27845 | Email This | Edit Vulnerability

Views This Week	Views All Time	Added to OSVDB	Last Modified	Modified (since 2008)	Percent Complete
8	1773	almost 7 years ago	10 months ago	11 times	100%

Timeline

Disclosure Date
2006-08-08

Description

A buffer overflow exists in Windows. The Server service fails to validate RPC messages resulting in a buffer overflow. With a specially crafted RPC message, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP SP2
		XP SP1
		2000 SP4
		XP x64 Edition
	Windows Server	2003 SP1
		2003 x64 Edition
		2003 for Itaniumm
		2003 for Itanium SP1
		2003

References

CVE ID: 2006-3439 (see also: NVD)
Secunia Advisory ID: 21388
Milw0rm: 2223 2355
Exploit Database: 2223 2355
SCIP VulDB ID: 2430
Metasploit ID: 27845
CERT VU: 650769
Microsoft Knowledge Base Article: 921883
VUPEN Advisory: ADV-2006-3210
Generic Exploit URL: http://immunitysec.com
http://www.saintcorporation.com/cgi-bin/exploit_info/windows_server_service
News Article: http://news.com.com/2100-7348_3-6103805.html?part=rss&tag=6103805&subj=news
http://www.eweek.com/article2/0,1895,2002966,00.asp
http://www.infoworld.com/article/06/08/09/HNmspatchdhs_1.html
http://www.techworld.com/security/news/index.cfm?newsID=6581
Microsoft Security Bulletin: MS06-040

Tools & Filters

Snort	15902 7209 7210 7211 7212 7213 7214 7215 7216 7217 7218 7219 7220 7221 7222 7223 7224 7225 7226 7227 7228 7229 7230 7231 7232 7233 7234 7235 7236 7237 7238 7239 7240 7241 7242 7243 7244 7245 7246 7247 7248 7249 7250 7251 7252 7253 7254 7255 7256 7257 7258 7259 7260 7261 7262 7263 7264 7265 7266 7267 7268 7269 7270 7271 7272 7273 7274 7275 7276 7277 7278 7279 7280 7281 7282 7283 7284 7285 7286 7287 7288 ... and 17 more
	22182 22194
	ms06_040

Credit

US-CERT - US CERT
ISC/SANS - ISC/SANS

CVSSv2 Score

CVSSv2 Base Score = 10.0
Source: nvd.nist.gov | Generated: 2006-08-10 | Disagree?

Comments

Add Comment Hide Add Comment

No Comments.

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.