Home › News › Industry News

Flaw in RPC Endpoint Mapper could allow DoS attacks

On March 26, 2003, 4:02 PM

There is a vulnerability in the part of RPC that deals with message exchange over TCP/IP. The failure results because of incorrect handling of malformed messages. This particular vulnerabilty affects the RPC Endpoint Mapper process, which listens on TCP/IP port 135. The RPC endpoint mapper allows RPC clients to determine the port number currently assigned to a particular RPC service.

Microsoft has provided patches with this bulletin to correct this vulnerability for Windows 2000 & XP. Although Windows NT 4.0 is affected by this vulnerability, Microsoft is unable to provide a patch for this vulnerability for Windows NT 4.0. The architectural limitations of Windows NT 4.0 do not support the changes that would be required to remove this vulnerability. Windows NT 4.0 users are strongly encouraged to employ the workaround discussed in the FAQ below, which is to protect the NT 4.0 system with a firewall that blocks Port 135.

Affected Software:
Microsoft Windows NT 4
Microsoft Windows 2000
Microsoft Windows XP

Patch availability:
Microsoft Windows 2000
All except Japanese NEC
Japanese NEC
Windows XP
32-bit Edition
64-bit edition

No tags on this story

Next Article: Windows Server plan goes modular

TechSpot on:

Most Popular

Trending

Featured

Featured on Keyboards

Downloads and Drivers

WhatsApp Messenger for Android 2.9.7280

The Bat! Home Edition 5.3.10

OnyX 2.6.9 for Mac OS X

More Downloads

Latest Discussion

Catalyst Control Center Error 8 replies on Device Drivers

Laptop overheats after coming out of sleep 6 replies on Mobile Computing

No monitor signal 64 replies on Audio and Video

External hard drive not showing up on my MacBook Pro 28 replies on Storage and Networking

Doom remastered in 9600x7211 16 replies on Gaming

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.

TechSpot

Welcome to TechSpot

Home › News › Industry News

Flaw in RPC Endpoint Mapper could allow DoS attacks

Next Article: Windows Server plan goes modular

Post a new comment

TechSpot on:

Most Popular

Building a Thin Mini-ITX PC: Small and Silent Performance

Microsoft launches YouTube app, Google demands it taken down

Bill Gates is once again the richest person in the world

Nvidia Shield arrives in June for $349, pre-orders open now (update)

Asus' new lineup of Z87 Haswell motherboards revealed

Building a Thin Mini-ITX PC: Small and Silent Performance

Metro: Last Light Review

Gigabyte U2442F Ultrabook Review

8 Free to Play Games That Are Too Good to Be True

Far Cry 3: Blood Dragon Review

Featured on Keyboards

79 Metadot Das Keyboard Professional

87 Logitech Illuminated Keyboard

84 Razer BlackWidow Ultimate

88 Corsair Vengeance K90

82 Apple Wireless Keyboard MB167

Downloads and Drivers

Latest Discussion

Subscribe to TechSpot

Featured Tech Content - Inside TechSpot

	Social Login & Guest Posting Post as anonymous user			TechSpot Members Login here or sign up for free, it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.