Microsoft Windows Domain Name Server Service Remote Procedure Call Interface Vulnerability

forkb0mb.org

Calendar

Back June '13
Mon Tue Wed Thu Fri Sat Sun
          1 2
3 4 5 6 7 8 9
10 11 12 13 14 15 16
17 18 19 20 21 22 23
24 25 26 27 28 29 30

Quicksearch

Categories


All categories

Archives

Blog Administration

Open login screen

Microsoft Windows Domain Name Server Service Remote Procedure Call Interface Vulnerability

Saturday, April 14. 2007

Microsoft Windows Domain Name Server Service Remote Procedure Call Interface Vulnerability

"Microsoft Windows Domain Name System (DNS) Server Service is prone to a stack-based buffer-overflow vulnerability in its Remote Procedure Call (RPC) interface.

A remote attacker may exploit this issue to run arbitrary code in the context of the DNS Server Service. The DNS service runs in the 'SYSTEM' context.

Successfully exploiting this issue allows attackers to execute arbitrary code, facilitating the remote compromise of affected computers."

/*
Yet another brand new vulnerability in a Microsoft service; this one yielding SYSTEM privileges. While SecurityFocus doesn't have a proof-of-concept exploit, they do have a module for MetaSploit that will aid in the creation of working exploits.
*/
Posted by TJE in Advisories, Buffer Overflow, Exploits, Remote, Vulnerabilities at 13:04 | Comments (0) | Trackbacks (0)

Trackbacks
Trackback specific URI for this entry

No Trackbacks

Comments
Display comments as (Linear | Threaded)

No comments

Add Comment

E-Mail addresses will not be displayed and will only be used for E-Mail notifications

To prevent automated Bots from commentspamming, please enter the string you see in the image below in the appropriate input box. Your comment will only be submitted if the strings match. Please ensure that your browser supports and accepts cookies, or your comment cannot be verified correctly.
CAPTCHA