Vulnerability Name:

CVE-2008-3479 (CCN-45537)

Assigned:2008-10-14
Published:2008-10-14
Updated:2018-10-12
Summary:Heap-based buffer overflow in the Microsoft Message Queuing (MSMQ) service (mqsvc.exe) in Microsoft Windows 2000 SP4 allows remote attackers to read memory contents and execute arbitrary code via a crafted RPC call, related to improper processing of parameters to string APIs, aka "Message Queuing Service Remote Code Execution Vulnerability."
CVSS v3 Severity:10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-20
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2008-3479

Source: CCN
Type: TPTI-08-07
Microsoft Windows Message Queuing Service Memory Corruption Vulnerability

Source: MISC
Type: Patch
http://dvlabs.tippingpoint.com/advisory/TPTI-08-07

Source: HP
Type: UNKNOWN
SSRT080143

Source: CCN
Type: SA32260
Microsoft Windows 2000 Message Queuing Service Vulnerability

Source: SECUNIA
Type: Patch, Vendor Advisory
32260

Source: CCN
Type: SECTRACK ID: 1021052
Microsoft Message Queuing (MSMQ) Heap Overflow Lets Remote Users Execute Arbitrary Code

Source: CCN
Type: ASA-2008-418
MS08-065 Vulnerability in Message Queuing Could Allow Remote Code Execution (951071)

Source: CCN
Type: Microsoft Security Bulletin MS08-065
Vulnerability in Message Queuing Could Allow Remote Code Execution (951071)

Source: BID
Type: Patch
31637

Source: CCN
Type: BID-31637
Microsoft Message Queuing Service RPC Query Heap Corruption Vulnerability

Source: SECTRACK
Type: UNKNOWN
1021052

Source: CERT
Type: US Government Resource
TA08-288A

Source: VUPEN
Type: UNKNOWN
ADV-2008-2816

Source: MS
Type: UNKNOWN
MS08-065

Source: XF
Type: UNKNOWN
win-msmq-rpc-code-execution(45537)

Source: XF
Type: UNKNOWN
win-msmq-rpc-code-execution(45537)

Source: XF
Type: UNKNOWN
win-ms08kb951071-update(45538)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:5998

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:5998
    V
    		Messaging Queue Service Remote Code Execution Vulnerability
    2008-11-24
    BACK
    microsoft windows 2000 * sp4
    microsoft windows 2000 - sp4