RPC DCOM BUFFER OVERFLOW

Firewalls, routers, servers, switches, SANs, PBXes, security and related topics
Locked
User avatar
Red Squirrel
Posts: 29209
Joined: Wed Dec 18, 2002 12:14 am
Location: Northern Ontario
Contact:

RPC DCOM BUFFER OVERFLOW

Post by Red Squirrel »

This security threat affects Windows 2000, NT, and XP and has recently been the subject of a security bulletin released by Microsoft. It is a vulnerability in a Windows Distributed Component Object Model (DCOM) Remote Procedure Call (RPC) interface which allows an attacker to gain full access and execute any code on a target machine, leaving it compromised.

The following platforms are affected by this vulnerability:

* Windows NT 4.0 Workstation
* Windows NT 4.0 Server
* Windows 2000 Professional
* Windows 2000 Server
* Windows 2000 Advance Server
* Windows XP Home
* Windows XP Professional

All existing service packs for the listed platforms, at the time of writing, are also affected.

TrendLabs is currently working to provide a more detailed analysis of this new security threat and will post updates whenever new information is available.

More info here



Archived topic from Iceteks, old topic ID:1162, old post ID:10205
Honk if you love Jesus, text if you want to meet Him!
User avatar
jryan
Posts: 395
Joined: Wed Dec 18, 2002 1:19 am

RPC DCOM BUFFER OVERFLOW

Post by jryan »

I've read about that one.

Archived topic from Iceteks, old topic ID:1162, old post ID:10207
syb
Posts: 222
Joined: Wed Jun 18, 2003 10:12 pm

RPC DCOM BUFFER OVERFLOW

Post by syb »

lol. Now thats one reason why i use win 98.

Archived topic from Iceteks, old topic ID:1162, old post ID:10239
The wisdom of sight comes from the father of lights
User avatar
Red Squirrel
Posts: 29209
Joined: Wed Dec 18, 2002 12:14 am
Location: Northern Ontario
Contact:

RPC DCOM BUFFER OVERFLOW

Post by Red Squirrel »

Win98 has it's own flaws.. :P

But I find there's more now with the newer OSes. The main problem is that everything is enabled by default. That does not help.

Archived topic from Iceteks, old topic ID:1162, old post ID:10241
Honk if you love Jesus, text if you want to meet Him!
User avatar
jryan
Posts: 395
Joined: Wed Dec 18, 2002 1:19 am

RPC DCOM BUFFER OVERFLOW

Post by jryan »

Everything is enabled by default in new operating systems, you say?
Not in Windows ME :)

Archived topic from Iceteks, old topic ID:1162, old post ID:10243
User avatar
Red Squirrel
Posts: 29209
Joined: Wed Dec 18, 2002 12:14 am
Location: Northern Ontario
Contact:

RPC DCOM BUFFER OVERFLOW

Post by Red Squirrel »

Not all of them, but I noticed Win2k has a lot of things enabled by default, not sure about XP though.

Archived topic from Iceteks, old topic ID:1162, old post ID:10245
Honk if you love Jesus, text if you want to meet Him!
Locked