Info

Disclosure

Jul 13, 2004

Discovery

Unknown

Dates

Exploit

Jul 31, 2004

Solution

Unknown

Description

A remote overflow exists in Microsoft Windows. The Task Scheduler application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted *.job file, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Products

Microsoft Corporation	Windows	XP
		2000 SP3
		2000 SP2
		XP SP1
		2000 SP4
		XP x64 SP1

References

Security Tracker: 1010688
Bugtraq ID: 10708
Secunia Advisory ID: 12060
OVAL ID: 1344 1781 1964 3428
ISS X-Force ID: 16591
CVE ID: 2004-0212 (see also: NVD)
CERT VU: 228028
Milw0rm: 353 368
Exploit Database: 353 368
SCIP VulDB ID: 764
Microsoft Knowledge Base Article: 841873
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0133.html
http://archives.neohapsis.com/archives/bugtraq/2004-07/0137.html
http://archives.neohapsis.com/archives/fulldisclosure/2004-07/1264.html
http://marc.theaimsgroup.com/?l=bugtraq&m=108981273009250&w=2
http://marc.theaimsgroup.com/?l=bugtraq&m=108981403025596&w=2
Generic Exploit URL: http://www.k-otik.com/exploits/07182004.ms04_022.cpp.php
http://www.saintcorporation.com/cgi-bin/exploit_info/windows_task_scheduler
Other Advisory URL: http://www.ngssoftware.com/advisories/mstaskjob.txt
Microsoft Security Bulletin: MS04-022
CERT: TA04-196A

Credit

Peter Winter-Smith - peterngssoftware.com - NGSSoftware

Direct URL: http://osvdb.org/7798

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows

References

Credit