Info

Disclosure

Feb 10, 2004

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in all server versions of Microsoft Windows running Windows Internet Name Service (WINS). The WINS fails to validate the length of certain packets resulting in a remote overflow. With a specially crafted request, an attacker can cause the service terminated or execute malicious code, resulting in a loss of integrity or availability.

Classification

Location: Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Integrity, Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades to correct this issue. However, Microsoft has released a patch to the affected versions of server to address this vulnerability. There is also a workaround to partly address this issue, please refer MS04-006.

Products

Microsoft Corporation	Windows	2000 Server
		NT 4.0 Server
		2003 Server x64
		2003 Server
		NT 4.0 Server Terminal Server Edition

References

Secunia Advisory ID: 10835
ISS X-Force ID: 15037
CVE ID: 2003-0825 (see also: NVD)
SCIP VulDB ID: 509
Bugtraq ID: 9624
Other Advisory URL: http://www.qualys.com/docs/securityalerts/Qadvise-Microsoft-WINS-20040210.pdf
Microsoft Security Bulletin: MS04-006
CIAC Advisory: o-077

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/3903

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit