Spyware Doctor
Spyware Doctor with AntiVirus
PC Tools AntiVirus
PC Tools Internet Security
PC Tools Firewall Plus
ThreatFire
Spam Monitor
Registry Mechanic
Desktop Maestro
File Recover
Privacy Guardian
PC Tools Disk Suite
Spyware Doctor Enterprise
Help me choose
Terminal Server Login Buffer Overflow Vulnerability
A security vulnerability exists in Microsoft® Windows NT 4.0 Terminal Server which could allow a malicious user to cause the Terminal Server to fail or, in certain instances, to execute hostile code on the server.
Issue
An unchecked buffer in the Terminal Server login prompt could allow a malicious user to cause the Terminal Server to execute arbitrary code. The ability to execute arbitrary code would enable the malicious user to add, change, or delete data, run code already on the server, or upload new code to the server and run it. The malicious user would not need to successfully login to the Terminal Server in order to initiate this attack.
This vulnerability could be exploited remotely if connection requests are not filtered. By default, Terminal Server listens on tcp port 3389. This port should be blocked at the firewall and/or router if Terminal Server access from the Internet is not required.
Affected Products
- Microsoft Windows NT 4.0 Terminal Server
Download
Patch: http://www.microsoft.com/Downloads/Release.asp?ReleaseID=25565
Further Details
Source: Microsoft Corporation
Updated: November 8, 2000
>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<
