Info

Disclosure

Aug 09, 2005

Discovery

Unknown

Dates

Exploit

Aug 11, 2005

Solution

Unknown

Description

A remote overflow exists in Windows. The Plug and Play Service fails to validate the length of a message resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	2000 SP4
		XP SP1
		XP SP2
		XP Professional x64 Edition
	Windows Server	2003
		2003 SP1
		2003 for Itanium
		2003 for Itanium SP1
		2003 x64 Edition

References

Security Tracker: 1014640
Milw0rm: 1146 1179
Exploit Database: 1146 1179
Bugtraq ID: 14513
Secunia Advisory ID: 16372
Metasploit ID: 18605
CVE ID: 2005-1983 (see also: NVD)
ISS X-Force ID: 21602
Microsoft Knowledge Base Article: 899588
CERT VU: 998653
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0384.html
Generic Exploit URL: http://immunitysec.com
http://www.saintcorporation.com/cgi-bin/exploit_info/windows_plug_play
Other Advisory URL: http://www.f-secure.com/v-descs/zotob_a.shtml
http://www.niscc.gov.uk/niscc/docs/br-20050815-00684.html?lang=en
http://www.securiteam.com/windowsntfocus/5YP0E00GKW.html
http://xforce.iss.net/xforce/alerts/id/202
Vendor Specific Advisory URL: http://www.microsoft.com/technet/security/advisory/906574.mspx
Microsoft Security Bulletin: MS05-039
CIAC Advisory: p-266
Keyword: worm Zotob

Credit

Neel Mehta - -

Direct URL: http://osvdb.org/18605

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

Windows Server

References

Credit