Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to spoof a valid RPC server.
The vulnerability is caused due to an error within the handling of RPC mutual authentication. This can be exploited to cause custom RPC clients to incorrectly validate the identity of the RPC server, which potentially allows a malicious RPC server to impersonate a valid service.
Successful exploitation requires that RPC clients use SSL with mutual authentication option enabled and that a user e.g. is tricked into connecting to a malicious RPC server.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, using the Network Software Inspector.
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.