|
Microsoft Windows Workstation Service Buffer Overflow
|
|
Secunia Advisory:
|
SA10193
|
|
|
Release Date:
|
2003-11-11
|
|
Last Update:
|
2003-11-12
|
|
Popularity:
|
16,049 views
|
|
|
Critical:
|
Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Microsoft Windows 2000 Advanced Server
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Server
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
| | CVE reference: | CVE-2003-0812
|
|
Description:
Microsoft has issued patches for Windows 2000 and XP. These fix a vulnerability in the Workstation service, which can be exploited by malicious people to compromise a vulnerable system.
The problem is an uncontrolled buffer in the logging function of the Windows Workstation Service (WKSSVC.DLL). This can be exploited by malicious people to execute arbitrary code with System privileges.
The vulnerability can be exploited through the DCE/RPC service on UDP and TCP ports 138, 139, and 445.
NOTE: Secunia would normally rate this kind of vulnerability as "Moderately critical", since systems only should expose RPC services to other systems on a LAN.
However, since the vulnerability is similar to the issue exploited by the Blaster worm, which infected numerous systems, the vulnerability has been rated as "Highly critical" instead.
Solution:
Patches are available:
Microsoft Windows 2000 Service Pack 2, Service Pack 3, Service Pack 4:
http://www.microsoft.com/downloads/de...-9638-D4D79483F261&displaylang=en
Microsoft Windows XP, Microsoft Windows XP Service Pack 1:
http://www.microsoft.com/downloads/de...-A0B9-5B67414C3833&displaylang=en
Microsoft Windows XP 64-Bit Edition:
http://www.microsoft.com/downloads/de...-80A5-55FDF5AA2296&displaylang=en
NOTE: Microsoft states that Windows XP systems with KB828035 (MS03-043) installed are not vulnerable.
Provided and/or discovered by:
Yuji Ukai, eEye Digital Security
Changelog:
2003-11-12: Updated "Description" section. Added links in "Other References" section.
Original Advisory:
Buffer Overrun in the Workstation Service Could Allow Code Execution (828749):
http://www.microsoft.com/technet/security/bulletin/MS03-049.asp
Windows Workstation Service Remote Buffer Overflow:
http://www.eeye.com/html/Research/Advisories/AD20031111.html
Other References:
http://www.kb.cert.org/vuls/id/567620
http://www.cert.org/advisories/CA-2003-28.html
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
10th Oct, 2008
|
New advisories:
|
15 |
|
New vulnerabilities:
|
83 |
|
Updated advisories:
|
41 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
