also @ TechSpot: Building a Thin Mini-ITX PC: Small and Silent Performance

Buffer Overrun In RPC Could Allow Code Execution

By Thomas McGuire

On July 16, 2003, 2:57 PM

Affected Software:
Microsoft Windows NT 4.0
Microsoft Windows NT 4.0 Terminal Services Edition
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003

The vulnerability results because the Windows RPC service does not properly check message inputs under certain circumstances. This particular failure affects an underlying Distributed Component Object Model (DCOM) interface, which listens on TCP/IP port 135. By sending a malformed RPC message, an attacker could cause the RPC service on a machine to fail in such a way that arbitrary code could be executed. interface with RPC on the remote machine to fail in such a way that arbitrary code could be executed.

Patch availability
Download locations for this patch

No tags on this story

Post a comment

Post a new comment

Social Login & Guest Posting TechSpot Members
Login here or sign up for free,
it takes about a minute.
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.
TechSpot on:

Most Popular

Trending Featured
More Trending Topics

Featured on Keyboards

Downloads and Drivers

Downloads   Drivers  

Data Crow 3.10.0

Dropbox 2.0.16

WhatsApp Messenger for Android 2.9.7280

The Bat! Home Edition 5.3.10

OnyX 2.6.9 for Mac OS X

More Downloads

Latest Discussion

Wireless capability keeps turning off 20 replies on Storage and Networking

Catalyst Control Center Error 8 replies on Device Drivers

Laptop overheats after coming out of sleep 6 replies on Mobile Computing

No monitor signal 64 replies on Audio and Video

External hard drive not showing up on my MacBook Pro 28 replies on Storage and Networking

More Recent Discussion

Subscribe to TechSpot

Get free exclusive content, learn about new features and breaking tech news.