Family: Windows : Microsoft Bulletins --> Category: infos
Buffer Overflow in the Workstation Service (828749) Vulnerability Scan
Vulnerability Scan Summary
Checks for hotfix 828749
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host.
The remote version of Windows contains a flaw in the function
NetpValidateName() in the WorkStation service which may allow an
attacker to execute arbitrary code on the remote host with the SYSTEM
A series of worms (Welchia, Spybot, ...) are known to exploit this
vulnerability in the wild.
Microsoft has released a set of patches for Windows 2000 and XP :
Critical / CVSS Base Score : 10
Click HERE for more information and discussions on this network vulnerability scan.