Windows : WINS Code Execution (870763) (network check)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.15970

Categoría: Windows

Título: WINS Code Execution (870763) (network check)

Resumen: NOSUMMARY

Descripción: Description:

The remote Windows Internet Naming Service (WINS) is vulnerable to a
flaw which could allow an attacker to execute arbitrary code on this host.

To exploit this flaw, an attacker needs to send a specially crafted
packet on port 42 of the remote host.

Solution : http://www.microsoft.com/technet/security/bulletin/ms04-045.mspx
Risk factor : High

Referencia Cruzada: BugTraq ID: 11763
BugTraq ID: 11922
Common Vulnerability Exposure (CVE) ID: CVE-2004-0567
http://www.securityfocus.com/bid/11922
CERT/CC vulnerability note: VU#378160
http://www.kb.cert.org/vuls/id/378160
Computer Incident Advisory Center Bulletin: P-054
http://www.ciac.org/ciac/bulletins/p-054.shtml
Microsoft Security Bulletin: MS04-045
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-045
http://www.osvdb.org/12370
http://securitytracker.com/id?1012517
http://secunia.com/advisories/13466
XForce ISS Database: wins-memory-pointer-hijack(18259)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18259
Common Vulnerability Exposure (CVE) ID: CVE-2004-1080
http://www.securityfocus.com/bid/11763
Bugtraq: 20041126 Immunity, Inc Advisor (Google Search)
http://marc.info/?l=bugtraq&m=110150370506704&w=2
CERT/CC vulnerability note: VU#145134
http://www.kb.cert.org/vuls/id/145134
ISS Security Advisory: 20041129 Microsoft WINS Server Vulnerability
http://xforce.iss.net/xforce/alerts/id/184
http://www.immunitysec.com/downloads/instantanea.pdf
Microsoft Knowledge Base article: 890710
http://support.microsoft.com/kb/890710
http://www.osvdb.org/12378
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1549
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2541
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2734
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3677
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4372
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4831
http://securitytracker.com/id?1012516
http://secunia.com/advisories/13328/

Copyright This script is Copyright (C) 2004 Tenable Network Security

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.15970
Categoría:	Windows
Título:	WINS Code Execution (870763) (network check)
Resumen:	NOSUMMARY
Descripción:	Description: The remote Windows Internet Naming Service (WINS) is vulnerable to a flaw which could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker needs to send a specially crafted packet on port 42 of the remote host. Solution : http://www.microsoft.com/technet/security/bulletin/ms04-045.mspx Risk factor : High
Referencia Cruzada:	BugTraq ID: 11763 BugTraq ID: 11922 Common Vulnerability Exposure (CVE) ID: CVE-2004-0567 http://www.securityfocus.com/bid/11922 CERT/CC vulnerability note: VU#378160 http://www.kb.cert.org/vuls/id/378160 Computer Incident Advisory Center Bulletin: P-054 http://www.ciac.org/ciac/bulletins/p-054.shtml Microsoft Security Bulletin: MS04-045 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-045 http://www.osvdb.org/12370 http://securitytracker.com/id?1012517 http://secunia.com/advisories/13466 XForce ISS Database: wins-memory-pointer-hijack(18259) https://exchange.xforce.ibmcloud.com/vulnerabilities/18259 Common Vulnerability Exposure (CVE) ID: CVE-2004-1080 http://www.securityfocus.com/bid/11763 Bugtraq: 20041126 Immunity, Inc Advisor (Google Search) http://marc.info/?l=bugtraq&m=110150370506704&w=2 CERT/CC vulnerability note: VU#145134 http://www.kb.cert.org/vuls/id/145134 ISS Security Advisory: 20041129 Microsoft WINS Server Vulnerability http://xforce.iss.net/xforce/alerts/id/184 http://www.immunitysec.com/downloads/instantanea.pdf Microsoft Knowledge Base article: 890710 http://support.microsoft.com/kb/890710 http://www.osvdb.org/12378 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1549 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2541 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2734 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3677 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4372 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4831 http://securitytracker.com/id?1012516 http://secunia.com/advisories/13328/
Copyright	This script is Copyright (C) 2004 Tenable Network Security