| Revision Date: | 2005-03-09 | Version: | 42 |
| Title: | RPCSS DCOM Buffer Overflow (XP) |
| Description: | Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed RPC request with a long filename parameter, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0715. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2003-0528
|
| Platform(s): | Microsoft Windows XP
| Product(s): | Distributed Component Object Model (DCOM)
|
| Definition Synopsis |
| Software section Windows XP 32-bit edition is installed
Windows XP is installed
AND 32-Bit version of Windows is installed
AND the version of rpcrt4.dll is less than 5.1.2600.109
AND NOT the patch kb824146 is installed (Hotfix key)
AND Configuration section
DCOM is enabled
|