|
|
Buffer Overrun In RPCSS Service
New
Three critical security vulnerabilities exist in the Remote Procedure Call (RPC) service that could allow an attacker to take any action on the system by sending a malformed RPC message to a vulnerable system.
Three critical security vulnerabilities exist in the Remote Procedure Call (RPC) service that could allow an attacker to take any action on the system by sending a malformed RPC message to a vulnerable system.
Flaw in NetBIOS Could Lead to Information Disclosure
New
A security vulnerability exists in the NetBIOS Name Service on Windows NT, 2000 and XP which could possibly allow a remote user to view random segments of memory on a user's computer.
A security vulnerability exists in the NetBIOS Name Service on Windows NT, 2000 and XP which could possibly allow a remote user to view random segments of memory on a user's computer.
What You Should Know About the Windows Blaster Worm
New
Popular
A new worm known as W32.Blaster.Worm (also known as MBlaster, W32/Lovsan.worm, MSBlast, W32.blaster.worm, Win32.posa.worm, Win32.poza.worm) has been identified that is seeking to exploit the vulnerability that was addressed by a recent Microsoft Security Bulletin. Blaster is designed to launch a denial of service attack against Microsoft's Windows Update Web site.
A new worm known as W32.Blaster.Worm (also known as MBlaster, W32/Lovsan.worm, MSBlast, W32.blaster.worm, Win32.posa.worm, Win32.poza.worm) has been identified that is seeking to exploit the vulnerability that was addressed by a recent Microsoft Security Bulletin. Blaster is designed to launch a denial of service attack against Microsoft's Windows Update Web site.
Unchecked Buffer in Windows Shell
New
An unchecked buffer exists in one of the functions used by the Windows XP shell which could allow a malicious user to construct an attack that could exploit this flaw and execute code on the system.
An unchecked buffer exists in one of the functions used by the Windows XP shell which could allow a malicious user to construct an attack that could exploit this flaw and execute code on the system.
Buffer Overrun In RPC Interface
New
A major security vulnerability exists in the RPC Interface of Windows NT, 2000, XP and Windows Server 2003 which could allow a remote attacker to run the code of their choice on the system. This vulnerability has been exploited by the Blaster worm.
A major security vulnerability exists in the RPC Interface of Windows NT, 2000, XP and Windows Server 2003 which could allow a remote attacker to run the code of their choice on the system. This vulnerability has been exploited by the Blaster worm.
Flaw in Windows Message Handling through Utility Manager
New
A local privilege elevation vulnerability exists in Windows 2000 that could allow a user to gain Local System privileges by sending a specially crafted Windows message to the Utility Manager process.
A local privilege elevation vulnerability exists in Windows 2000 that could allow a user to gain Local System privileges by sending a specially crafted Windows message to the Utility Manager process.
Buffer Overrun in Windows
New
A security vulnerability exists in a networking components of Windows NT, 2000 and XP which could allow an attacker to execute code of their choice by sending a specially crafted SMB packet request.
A security vulnerability exists in a networking components of Windows NT, 2000 and XP which could allow an attacker to execute code of their choice by sending a specially crafted SMB packet request.
Microsoft Releases Windows 2000 Service Pack 4
New
Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 operating systems. These updates are a collection of fixes in the following areas: security, application compatibility, operating system reliability, and setup.
Windows 2000 Service Pack 4 (SP4) provides the latest updates to the Windows 2000 operating systems. These updates are a collection of fixes in the following areas: security, application compatibility, operating system reliability, and setup.
Buffer Overrun in Windows Kernel Message Handling
New
A security vulnerability exists in the way the Windows kernel passes error messages to a debugger which could allow a local attacker to take any action on the system with full administrative privileges.
A security vulnerability exists in the way the Windows kernel passes error messages to a debugger which could allow a local attacker to take any action on the system with full administrative privileges.
Flaw in RPC Endpoint Mapper
New
A security vulnerabiliy in the Remote Procedure Call (RPC) endpoint mapper in Windows NT 4.0, 2000 and XP could allows a remote attacker to cause a denial of service by transmitting a malformed RPC message.
A security vulnerabiliy in the Remote Procedure Call (RPC) endpoint mapper in Windows NT 4.0, 2000 and XP could allows a remote attacker to cause a denial of service by transmitting a malformed RPC message.
Unchecked Buffer Could Cause Web Server Compromise
New
An unchecked buffer in a component of Windows 2000 could allow an attacker to compromise the machine by sending a specially formed HTTP request to the Internet Information Server (IIS).
An unchecked buffer in a component of Windows 2000 could allow an attacker to compromise the machine by sending a specially formed HTTP request to the Internet Information Server (IIS).
Unchecked Buffer in Windows Redirector
New
A security vulnerability exists in the Windows Redirector of Windows XP that could allow a local user to elevate their security privileges by exploiting an unchecked buffer.
A security vulnerability exists in the Windows Redirector of Windows XP that could allow a local user to elevate their security privileges by exploiting an unchecked buffer.
Unchecked Buffer in Locator Service
New
A critical security vulnerability exists in the Microsoft Locator service which is part of the Windows NT, 2000 and XP operating system. The unchecked buffer could allow an attacker to run the code of their choice on the system.
A critical security vulnerability exists in the Microsoft Locator service which is part of the Windows NT, 2000 and XP operating system. The unchecked buffer could allow an attacker to run the code of their choice on the system.
Unchecked Buffer in Windows Shell
New
An unchecked buffer exists in one of the functions used by the Windows Shell to extract custom attribute information from audio files. This could allow a malicious user to mount a buffer overrun attack and possibly run the code of their choice on the system.
An unchecked buffer exists in one of the functions used by the Windows Shell to extract custom attribute information from audio files. This could allow a malicious user to mount a buffer overrun attack and possibly run the code of their choice on the system.
Flaw in Windows WM_TIMER Message Handling
New
A security vulnerability exists in the WM_TIMER message handling in Windows NT, 2000 and XP. The flaw could give an attacker, who had the ability to log onto a system interactively, complete control over the system.
A security vulnerability exists in the WM_TIMER message handling in Windows NT, 2000 and XP. The flaw could give an attacker, who had the ability to log onto a system interactively, complete control over the system.
Flaw in SMB Signing
New
A flaw in the implementation of Server Message Block (SMB) Signing in Windows 2000 and Windows XP could enable an attacker to silently downgrade the SMB Signing settings on an affected system.
A flaw in the implementation of Server Message Block (SMB) Signing in Windows 2000 and Windows XP could enable an attacker to silently downgrade the SMB Signing settings on an affected system.
Unchecked Buffer in PPTP Implementation
New
A security vulnerability exists in the Windows 2000 and Windows XP implementation of the Point-to-Point Tunneling Protocol (PPTP). By delivering specially malformed PPTP control data to an affected server, an attacker could corrupt kernel memory and cause a denial-of-service.
A security vulnerability exists in the Windows 2000 and Windows XP implementation of the Point-to-Point Tunneling Protocol (PPTP). By delivering specially malformed PPTP control data to an affected server, an attacker could corrupt kernel memory and cause a denial-of-service.
Windows 2000 Default Permissions Could Allow Trojan Horse Program
New
Due to the default permissions used on the Windows 2000 system root folder it could enable an attacker to mount a Trojan horse attack against other users of the same system.
Due to the default permissions used on the Windows 2000 system root folder it could enable an attacker to mount a Trojan horse attack against other users of the same system.
Flaw in Windows XP Help and Support Center
New
A security vulnerability is present in the Windows XP version of Help and Support Center which could allow an attacker to delete files on the local system by constructing a web page or sending a HTML e-mail.
A security vulnerability is present in the Windows XP version of Help and Support Center which could allow an attacker to delete files on the local system by constructing a web page or sending a HTML e-mail.
Cryptographic Flaw in Remote Desktop Protocol
New
Two security vulnerabilities exist in the RDP Protocol which is used by Windows NT and 2000 Terminal Services and Windows XP for Remote Desktop access.
Two security vulnerabilities exist in the RDP Protocol which is used by Windows NT and 2000 Terminal Services and Windows XP for Remote Desktop access.
Unchecked Buffer in Windows Network Share Service
New
A security vulnerability exists in the Windows network share provider which may lead to a denial-of-service if an attacker sends a specially-crafted packet request.
A security vulnerability exists in the Windows network share provider which may lead to a denial-of-service if an attacker sends a specially-crafted packet request.
Unchecked Buffer in Remote Access Service Phonebook
New
A security flaw exists in the RAS phonebook implementation where a phonebook value is not properly checked and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes; causing a system failure or running code on the system with LocalSystem privileges.
A security flaw exists in the RAS phonebook implementation where a phonebook value is not properly checked and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes; causing a system failure or running code on the system with LocalSystem privileges.
Unchecked Buffer in ASP.NET Worker Process
New
A security vulnerability exists in the .NET session state management function which could be exploited by mounting a buffer overrun attack. A successful attack could cause the ASP.NET application to restart causing a denial of service, in addition the attacker could potentially run code of their choice on the server.
A security vulnerability exists in the .NET session state management function which could be exploited by mounting a buffer overrun attack. A successful attack could cause the ASP.NET application to restart causing a denial of service, in addition the attacker could potentially run code of their choice on the server.
Authentication Flaw in Windows Debugger
New
A security vulnerability in the authentication mechanism for the Windows debugging facility may allow a malicious user to execute the code of their choice in the same security context as a controlled program.
A security vulnerability in the authentication mechanism for the Windows debugging facility may allow a malicious user to execute the code of their choice in the same security context as a controlled program.
Unchecked buffer in the Multiple UNC Provider
New
A security vulnerability exists in the Multiple UNC Provider service which could be exploited to allow an attacker to run the code of their code on the system.
A security vulnerability exists in the Multiple UNC Provider service which could be exploited to allow an attacker to run the code of their code on the system.
Malformed Data Can Cause Windows SMTP Service to Fail
New
A security flaw exists in the Windows 2000 and Windows XP SMTP service that could enable denial of service attacks to be mounted against the server.
A security flaw exists in the Windows 2000 and Windows XP SMTP service that could enable denial of service attacks to be mounted against the server.
Unauthorized Users Could Authenticate To SMTP Service
New
A security flaw exists in the SMTP service in Windows 2000 server products and as part of the Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 which may allow unauthorized users to relay mail.
A security flaw exists in the SMTP service in Windows 2000 server products and as part of the Internet Mail Connector (IMC) for Microsoft Exchange Server 5.5 which may allow unauthorized users to relay mail.
Forged SID Could Result in Elevated Privileges
New
A security vulnerability exists in the domain authenication process of Windows NT and 2000 server which could allow a malicious user to gain administrative privileges on a trusting domain.
A security vulnerability exists in the domain authenication process of Windows NT and 2000 server which could allow a malicious user to gain administrative privileges on a trusting domain.
NNTP Service Contains Memory Leak
New
A security vulnerability exists in the NNTP news service which could allow a remote malicious user to cause a denial of service attack by exploiting a memory leak.
A security vulnerability exists in the NNTP news service which could allow a remote malicious user to cause a denial of service attack by exploiting a memory leak.
Malformed RPC Request Can Cause Service Failure
New
A security vulnerability exists in Windows NT 4.0, Windows 2000, SQL Server, and Exchange Server which could allow a malicious user to cause a denial of service by sending a malformed RPC request.
A security vulnerability exists in Windows NT 4.0, Windows 2000, SQL Server, and Exchange Server which could allow a malicious user to cause a denial of service by sending a malformed RPC request.
Invalid RDP Data Can Cause Memory Leak in Terminal Services
New
A security vulnerability exists in Windows 2000 and Windows NT 4.0 Terminal servers which could allow a malicious user to cause a denial of service attack by flooding port 3389.
A security vulnerability exists in Windows 2000 and Windows NT 4.0 Terminal servers which could allow a malicious user to cause a denial of service attack by flooding port 3389.
Phone Book Service Buffer Overflow Vulnerability
A security vulnerability exists in an optional service that ships with Microsoft® Windows NT® 4.0 and Windows® 2000 Servers which could allow a malicious user to execute hostile code on a remote server that is running the service.
A security vulnerability exists in an optional service that ships with Microsoft® Windows NT® 4.0 and Windows® 2000 Servers which could allow a malicious user to execute hostile code on a remote server that is running the service.
Multiple LPC and LPC Ports Vulnerabilities
Several security vulnerabilities exist in local procedure call (LPC) functionality and LPC ports of Microsoft® Windows NT® 4.0 and Windows® 2000 which allow a range of attacks, from denial of service to, in some cases, privilege elevation.
Several security vulnerabilities exist in local procedure call (LPC) functionality and LPC ports of Microsoft® Windows NT® 4.0 and Windows® 2000 which allow a range of attacks, from denial of service to, in some cases, privilege elevation.
Relative Shell Path Vulnerability
A security vulnerability exists in Microsoft® Windows NT® 4.0 and Windows® 2000 which could enable a malicious user to cause code of his choice to run when another user subsequently logged onto the same machine.
A security vulnerability exists in Microsoft® Windows NT® 4.0 and Windows® 2000 which could enable a malicious user to cause code of his choice to run when another user subsequently logged onto the same machine.
NetBIOS Name Server Protocol Spoofing Vulnerability
A security vulnerability exists in the NetBIOS Name Server (NBNS) protocol implemented in Microsoft® Windows® systems which could be used to cause a machine to refuse to respond to requests for service.
A security vulnerability exists in the NetBIOS Name Server (NBNS) protocol implemented in Microsoft® Windows® systems which could be used to cause a machine to refuse to respond to requests for service.
ResetBrowser Frame and HostAnnouncement Frame Vulnerabilities
These vulnerabilities could allow a malicious user to make it difficult or impossible for other users to locate services and computers on a network; in the worst case, it could allow the attacker to provide incorrect information about the same services and computers.
These vulnerabilities could allow a malicious user to make it difficult or impossible for other users to locate services and computers on a network; in the worst case, it could allow the attacker to provide incorrect information about the same services and computers.
IP Fragment Reassembly Vulnerability
If IP fragments having a particular malformation are sent to a Windows NT 4.0 or Windows 2000 computer in a continuous stream at a relatively low data rate, an implementation flaw will cause the computer to devote most or all of its CPU availability to processing the incoming fragments.
If IP fragments having a particular malformation are sent to a Windows NT 4.0 or Windows 2000 computer in a continuous stream at a relatively low data rate, an implementation flaw will cause the computer to devote most or all of its CPU availability to processing the incoming fragments.
Malformed Environment Variable Vulnerability
A security vulnerability exists in Microsoft® Windows NT® 4.0 and Windows® 2000 which could allow a malicious user to make some or all of the memory on an affected server unavailable, potentially slowing or stopping an affected server's response time.
A security vulnerability exists in Microsoft® Windows NT® 4.0 and Windows® 2000 which could allow a malicious user to make some or all of the memory on an affected server unavailable, potentially slowing or stopping an affected server's response time.
Malformed TCP/IP Print Request Vulnerability
By sending a specially-malformed print request via the LPD Server service, a malicious user could cause the service to stop, preventing the computer from servicing some print requests. Other services may also be affected by stopping this service, including the Dynamic Host Control Protocol (DHCP) service.
By sending a specially-malformed print request via the LPD Server service, a malicious user could cause the service to stop, preventing the computer from servicing some print requests. Other services may also be affected by stopping this service, including the Dynamic Host Control Protocol (DHCP) service.
Terminal Server Connection Request Flooding Vulnerability
Due to the way Windows TSE handles requests to open a new terminal connection a vulnerability exists that could pose a denial-of-service threat.
Due to the way Windows TSE handles requests to open a new terminal connection a vulnerability exists that could pose a denial-of-service threat.
 |
 |
|
More Guides » | Registry Guide | Support Forums | Software Guide | Scripting Guide | Search |  | |
