Test ID:	1.3.6.1.4.1.25623.1.0.12054
Category:	Windows
Title:	ASN.1 Parsing Vulnerabilities (NTLM check)
Summary:	NOSUMMARY
Description:	Description: The remote Windows host has a ASN.1 library which is vulnerable to a flaw which could allow an attacker to execute arbitrary code on this host. To exploit this flaw, an attacker would need to send a specially crafted ASN.1 encoded packet with improperly advertised lengths. This particular check sent a malformed NTLM packet and determined that the remote host is not patched. Solution : http://www.microsoft.com/technet/security/bulletin/ms04-007.mspx Risk factor : High
Cross-Ref:	BugTraq ID: 9633 BugTraq ID: 9635 BugTraq ID: 9743 Common Vulnerability Exposure (CVE) ID: CVE-2003-0818 Bugtraq: 20040210 EEYE: Microsoft ASN.1 Library Bit String Heap Corruption (Google Search) http://marc.info/?l=bugtraq&m=107643892224825&w=2 Bugtraq: 20040210 EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption (Google Search) http://marc.info/?l=bugtraq&m=107643836125615&w=2 Cert/CC Advisory: TA04-041A http://www.us-cert.gov/cas/techalerts/TA04-041A.html CERT/CC vulnerability note: VU#216324 http://www.kb.cert.org/vuls/id/216324 CERT/CC vulnerability note: VU#583108 http://www.kb.cert.org/vuls/id/583108 Microsoft Security Bulletin: MS04-007 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-007 http://marc.info/?l=ntbugtraq&m=107650972723080&w=2 http://marc.info/?l=ntbugtraq&m=107650972617367&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A653 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A796 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A797 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A799
Copyright	This script is Copyright (C) 2004 Renaud Deraison

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.