Name:
MS.Windows.RPC.REMACT.Service.Access
Released Date:
Jun 19 2006
Severity:
critical
CVE:
2003-0715
MS Bulletin:
MS03-039
Bugtraq:
8458

FortiGuard Center > Vulnerability Encyclopedia


In-Depth Analysis

Description
This indicates a possible attempt at exploiting a heap-based buffer-overflow vulnerability in the Distributed Component Object Model (DCOM) interface in the RPCSS Service.

The vulnerability can be triggered by a malformed DCERPC DCOM object activation request packet. Remote attackers may exploit this to execute arbitrary code on the vulnerable system.
 
Impact
System compromise
 
Affected Products
Microsoft Windows XP
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows 2000 Server
Aliases
-tag.Windows.RPC.REMACT.Service.Access.135
Windows.DCERPC.Activation.Heap.Overflow.135.A
References
http://www.microsoft.com/technet/security/Bulletin/MS03-039.mspx
http://www.securityfocus.com/bid/8458
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2003-0715
Recommended Actions
Microsoft has released security update MS03-039 to fix this vulnerability.

 
 
SITE MAP  |  LEGAL NOTICES

      © 2003 FORTINET INC. ALL RIGHTS RESERVED