Microsoft Windows Buffer Overflow in Messenger Service - Secunia Advisories - Vulnerability Intelligence

Microsoft Windows Buffer Overflow in Messenger Service
Secunia Advisory:	SA10012	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2003-10-15
Last Update:	2003-11-17
Popularity:	21,352 views

Critical:	Highly critical
Impact:	DoS System access
Where:	From local network
Solution Status:	Vendor Patch

OS:	Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional Microsoft Windows 2000 Server Microsoft Windows NT 4.0 Server Microsoft Windows NT 4.0 Server, Terminal Server Edition Microsoft Windows NT 4.0 Workstation Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows XP Home Edition Microsoft Windows XP Professional

Subscribe:	Instant alerts on relevant vulnerabilities

CVE reference:	CVE-2003-0717

Description: Microsoft has issued patches for Microsoft Windows to fix a buffer overflow vulnerability in Messenger Service, which could lead to execution of arbitrary code. The problem is that the Messenger Service doesn't verify the length of messages. This allows malicious people to send messages, which causes a buffer overflow that may allow execution of arbitrary code. The vulnerability only affects systems where the Messenger Service is enabled. The Messenger Service is disabled by default on Microsoft Windows 2003. Solution: NetBIOS and RPC traffic should be filtered at the network perimeter. Microsoft has issued patches: Patches are available from WindowsUpdate or from: Microsoft Windows NT Workstation 4.0, Service Pack 6a http://www.microsoft.com/downloads/de...-9E46-A17D808ED38D&displaylang=en Microsoft Windows NT Server 4.0, Service Pack 6a http://www.microsoft.com/downloads/de...-9A28-79FD79F26A1B&displaylang=en Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6 http://www.microsoft.com/downloads/de...-93A8-26CDB98B05A8&displaylang=en Microsoft Windows 2000 http://www.microsoft.com/downloads/de...-A021-4B494CCCBDE0&displaylang=en Microsoft Windows XP Gold, Service Pack 1 http://www.microsoft.com/downloads/de...-A0B9-5B67414C3833&displaylang=en Microsoft Windows XP 64-bit Edition http://www.microsoft.com/downloads/de...-80A5-55FDF5AA2296&displaylang=en Microsoft Windows XP 64-bit Edition Version 2003 http://www.microsoft.com/downloads/de...-899C-5A44EC13174E&displaylang=en Microsoft Windows Server 2003 http://www.microsoft.com/downloads/de...-9143-C1E3C9E2F5F8&displaylang=en Microsoft Windows Server 2003 64-bit Edition http://www.microsoft.com/downloads/de...-899C-5A44EC13174E&displaylang=en Provided and/or discovered by: The Last Stage of Delirium Research Group Changelog: 2003-10-16: Added link to CERT vulnerability note. 2003-10-30: Microsoft has issued new patches for Windows 2000, Windows XP, and Windows Server 2003 which fixes bugs in the original patch. 2003-11-17: Microsoft has issued new patches for Windows XP because a copy of the "wkssvc.dll" file isn't placed in "%systemroot%\system32\dllcache". Original Advisory: Buffer Overrun in Messenger Service Could Allow Code Execution http://www.microsoft.com/technet/security/bulletin/MS03-043.asp Other References: http://support.microsoft.com/default.aspx?kbid=828035 CERT VU#575892: http://www.kb.cert.org/vuls/id/575892

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

21st Nov, 2008

New advisories:	12
New vulnerabilities:	46
Updated advisories:	20

Highly // 955 views

Apple iPhone / iPod touch Multiple Vulnerabilities

Moderately // 518 views

vBulletin Visitor Messages Script Insertion Vulnerability

Less // 507 views

SemanticScuttle Cross-Site Scripting Vulnerabilities

Moderately // 497 views

Easyedit CMS Multiple SQL Injection Vulnerabilities

Highly // 510 views

Fedora update for thunderbird

Less // 548 views

IBM Workplace Web Content Management Cross-Site Scripting Vulnerabilities

Highly // 792 views

BitDefender Antivirus PDF Processing Memory Corruption Vulnerability

Moderately // 563 views

xt:Commerce SQL Injection Vulnerability

Less // 519 views

Softbiz Classifieds Script "msg" Cross-Site Scripting Vulnerability

Not // 728 views

Checkpoint VPN-1 Information Disclosure Vulnerability

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.