|
|
|
Microsoft Windows Help and Support Center Buffer Overflow Vulnerability
|
|
Secunia Advisory:
|
SA10013
|
|
|
Release Date:
|
2003-10-15
|
|
Last Update:
|
2003-10-23
|
|
Popularity:
|
16,827 views
|
|
|
Critical:
|
 Highly critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Microsoft Windows 2000 Advanced Server Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Professional Microsoft Windows 2000 Server Microsoft Windows Millenium Microsoft Windows NT 4.0 Server Microsoft Windows NT 4.0 Server, Terminal Server Edition Microsoft Windows NT 4.0 Workstation Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Web Edition Microsoft Windows XP Home Edition Microsoft Windows XP Professional
|
|
|
Secunia CVSS-2 Score:
|
Available in Secunia business solutions
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities
|
|
| Advisory Content (Page 2 of 3) | [ 1 ] [ 2 ] [ 3 ] | |
|
Solution: Microsoft has issued patches:
The patches are available from WindowsUpdate or from:
Microsoft Windows Millennium Edition:
http://www.microsoft.com/downloads/de...-9795-5CDD566BB3B8&displaylang=en
Microsoft Windows NT Workstation 4.0, Service Pack 6a
http://www.microsoft.com/downloads/de...-B818-4E659C7F95AE&displaylang=en
Microsoft Windows NT Server 4.0, Service Pack 6a
http://www.microsoft.com/downloads/de...-8A20-3441F02A25CB&displaylang=en
Microsoft Windows NT Server 4.0, Terminal Server Edition, Service Pack 6
http://www.microsoft.com/downloads/de...-9AA5-BC6ABE3FD479&displaylang=en
Microsoft Windows 2000, Service Pack 2
http://www.microsoft.com/downloads/de...-A95E-E4FB080A63C6&displaylang=en
Microsoft Windows 2000, Service Pack 3, Service Pack 4
http://www.microsoft.com/downloads/de...-9F8C-8BF5DE2D1117&displaylang=en
Microsoft Windows XP Gold, Service Pack 1
http://www.microsoft.com/downloads/de...-A095-66CA09DFDAC6&displaylang=en
Microsoft Windows XP 64-bit Edition
http://www.microsoft.com/downloads/de...-B9FC-7EA13954B982&displaylang=en
Microsoft Windows XP 64-bit Edition Version 2003
http://www.microsoft.com/downloads/de...-B21A-8E9444F5A08E&displaylang=en
Microsoft Windows Server 2003
http://www.microsoft.com/downloads/de...-9175-E3640E3EFD49&displaylang=en
Microsoft Windows Server 2003 64-bit Edition
http://www.microsoft.com/downloads/de...-899C-5A44EC13174E&displaylang=en
Provided and/or discovered by: David Litchfield, Next Generation Security Software.
Changelog: 2003-10-16: Updated "Description" section. Added link to NGSSoftware original advisory.
2003-10-23: Updated download link for Windows XP 64-bit Edition version 2003.
Original Advisory: Buffer Overrun in Windows Help and Support Center Could Lead to System Compromise
http://www.microsoft.com/technet/security/bulletin/MS03-044.asp
Microsoft PCHealth Privilege Escalation:
http://www.nextgenss.com/advisories/ms-pchealth.txt
Other References: http://support.microsoft.com/default.aspx?kbid=825119
Change Page: [ 1 ] [ 2 ] [ 3 ]
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
Today
|
New advisories:
|
5 |
|
New vulnerabilities:
|
24 |
|
Updated advisories:
|
9 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
11th Nov, 2009
|
New advisories:
|
18 |
|
New vulnerabilities:
|
40 |
|
Updated advisories:
|
39 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Solutions | More...
|
|
|
|
Send Feedback to Secunia
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
|