|
|
CVE Reference: CVE-2007-3039 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-3039 |
|
|
Description: Stack-based buffer overflow in the Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4, Windows 2000 Professional SP4, and Windows XP SP2 allows attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. NOTE: this is remotely exploitable on Windows 2000 Server. |
|
|
CVE Status: Candidate |
|
|
References: ST 1019077 SAID Secunia Advisory: SA28011 Secunia Advisory: SA28051 OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4474 MS http://www.microsoft.com/technet/security/bulletin/ms07-065.mspx MISC http://www.zerodayinitiative.com/advisories/ZDI-07-076.html MILW0RM http://www.milw0rm.com/exploits/4934 http://www.milw0rm.com/exploits/4745 http://www.milw0rm.com/exploits/4760 HP http://www.securityfocus.com/archive/1/archive/1/485268/100/0/threaded CERT http://www.us-cert.gov/cas/techalerts/TA07-345A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/484891/100/0/threaded BID 26797 |
|
| Return to the previous page. |
