Info

Disclosure

Apr 12, 2005

Discovery

Unknown

Dates

Exploit

May 11, 2005

Solution

Unknown

Description

A remote overflow exists in Windows. The Message Queuing component fails to validate input received from the network resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP3
		2000 SP4
		XP SP1
		XP 64-Bit SP1

References

Security Tracker: 1013691
Milw0rm: 1075
Exploit Database: 1075
Bugtraq ID: 13112
Secunia Advisory ID: 14921
Metasploit ID: 15458
ISS X-Force ID: 19829
CVE ID: 2005-0059 (see also: NVD)
Microsoft Knowledge Base Article: 892944
Generic Exploit URL: http://immunitysec.com
http://www.frsirt.com/exploits/20050511.msmq_deleteobject_ms05_017.pm.pm.php
http://www.saintcorporation.com/cgi-bin/exploit_info/windows_message_queuing
http://www.securiteam.com/exploits/5HP1400G0K.html
Other Advisory URL: http://www.securiteam.com/exploits/5WP0H0AFPU.html
Microsoft Security Bulletin: MS05-017

Credit

Kostya Kortchinsky - CERT

Direct URL: http://osvdb.org/15458

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit