| Alias/es | MS.Windows.RPC.REMACT.Service.Access.135 |
| Last Updated Date | Aug 05, 2008 |
| Release Date | Jun 19, 2006 |
| Severity | Critical |
| Impact | System compromise |
| Description | This indicates a possible attempt at exploiting a heap-based buffer-overflow vulnerability in the Distributed Component Object Model (DCOM) interface in the RPCSS Service.
The vulnerability can be triggered by a malformed DCERPC DCOM object activation request packet. Remote attackers may exploit this to execute arbitrary code on the vulnerable system. |
| Affected Products | Microsoft Windows XP
Microsoft Windows 2000
Microsoft Windows Server 2003
Microsoft Windows 2000 Server |
| Recommended Actions | Microsoft has released security update MS03-039 to fix this vulnerability. |
| Common Vulnerabilities and Exposures (CVE) | http://cve.mitre.org/cgi-bin/cvename.cgi?name=2003-0715
|
| Microsoft Bulletin ID | MS03-039 http://www.microsoft.com/technet/security/Bulletin/MS03-039.mspx |
| Reference/s | http://www.securityfocus.com/bid/8458 (BugTraq)
|