Secunia Logo  
 Vulnerability IntelligenceVulnerability ScanningCommunityBlogCorporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Intelligence > Secunia Advisories > Microsoft Windows Indexing Service Buffer Overflow Vulnerability
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists & RSS
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About
 
Microsoft Windows Indexing Service Buffer Overflow Vulnerability
Secunia Advisory: SA13802
Advisory Toolbox:
Issue ticket
Save in to-do list
Mark as handled
Exploit information
Download as PDF
Review actions
Add comment
Release Date: 2005-01-11
Last Update: 2005-11-21
Popularity: 19,985 views

Critical:
Highly critical
Impact: System access
Where: From remote
Solution Status: Vendor Patch

OS:Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Server 2003 Web Edition
Microsoft Windows XP Embedded
Microsoft Windows XP Home Edition
Microsoft Windows XP Professional
Subscribe: Instant alerts on relevant vulnerabilities

CVE reference:CVE-2004-0897
Description:
A vulnerability has been reported in Microsoft Windows XP and 2003, which can be exploited by malicious people to compromise a vulnerable system.

The vulnerability is caused due to an unchecked buffer in the indexing service. This can be exploited to execute arbitrary code through a malicious query.

Note: This vulnerability has been set to "From Remote" because the indexing service can be configured to be accessible through Internet Information Services (IIS).

Solution:
Apply patches.

Microsoft Windows XP (requires Service Pack 1):
http://www.microsoft.com/downloads/de...=FB8A7622-94AB-44E7-85C3-163BAC4602E2

Microsoft Windows XP 64-Bit Edition (requires Service Pack 1):
http://www.microsoft.com/downloads/de...=30A83F1D-87E9-4720-8316-191AE509F094

Microsoft Windows XP 64-Bit Edition Version 2003:
http://www.microsoft.com/downloads/de...=C3474E75-1FE2-4215-8A8D-A9244FF93419

Microsoft Windows XP Embedded SP1:
http://www.microsoft.com/downloads/de...=aed17ac4-2061-467b-9127-92b539e56f0a

Microsoft Windows Server 2003:
http://www.microsoft.com/downloads/de...=50F72DC5-5DD6-4D12-A91C-6815EC8203EF

Microsoft Windows Server 2003 64-Bit Edition:
http://www.microsoft.com/downloads/de...=C3474E75-1FE2-4215-8A8D-A9244FF93419

Note: Microsoft has also issued patches for Microsoft Windows 2000 which provides a security enhancement. However, Microsoft Windows 2000 is not affected by the vulnerability. See original advisory for details.

Provided and/or discovered by:
Reported by vendor.

Changelog:
2005-01-21: Added link to US-CERT vulnerability note.
2005-11-21: Added patch information for Windows XP Embedded.

Original Advisory:
MS05-003 (KB871250):
http://www.microsoft.com/technet/security/Bulletin/MS05-003.mspx

Other References:
US-CERT VU#657118:
http://www.kb.cert.org/vuls/id/657118

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.

Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.

Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
  
Latest Advisories

7th Jan, 2009
New advisories: 31
New vulnerabilities: 90
Updated advisories: 37

Less // 511 views
Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability
Moderately // 298 views
Red Hat update for xterm
Not // 281 views
Red Hat update for dbus
Moderately // 382 views
Red Hat update for openssl
Moderately // 619 views
OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability
Less // 303 views
vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability
Moderately // 263 views
BlogHelper "common_db.inc" Information Disclosure Security Issue
Moderately // 263 views
PollHelper "poll.inc" Information Disclosure Security Issue
Highly // 343 views
ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow
Highly // 309 views
TSC2 Help Desk CTab ActiveX Control Caption List Buffer Overflow

Solutions | More...  

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.

Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1. OpenSSL DSA / ECDSA "EVP_VerifyFinal()" Spoofing Vulnerability // 72 views
2. SAP GUI TabOne ActiveX Control Caption List Buffer Overflow // 48 views
3. Symantec Mail Security for SMTP Response Handling Denial of Service // 38 views
4. Joomla! "X_CMS_LIBRARY_PATH" Directory Traversal Vulnerability // 38 views
5. ComponentOne SizerOne CTab ActiveX Control Caption List Buffer Overflow // 29 views
6. Red Hat update for openssl // 29 views
7. TSC2 Help Desk CTab ActiveX Control Caption List Buffer Overflow // 29 views
8. vBulletin Personal Sticky Threads Add-on Security Bypass Vulnerability // 28 views
9. Red Hat update for dbus // 26 views
10. PollHelper "poll.inc" Information Disclosure Security Issue // 26 views



Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs | About Secunia
Copyright Secunia 2002-2009