|
Family: Windows --> Category: infos
NetBIOS Name Service Reply Information Leakage Vulnerability Scan
Vulnerability Scan Summary Tests the NetBT NS mem disclosure
Detailed Explanation for this Vulnerability Test
The remote host is running a version of the NetBT name service which
suffers from a memory disclosure problem.
A possible hacker may send a special packet to the remote NetBT name
service, and the reply will contain random arbitrary data from the
remote host memory. This arbitrary data may be a fragment from the
web page the remote user is viewing, or something more serious like a
POP password or anything else.
A possible hacker may use this flaw to continuously 'poll' the content of
the memory of the remote host and might be able to obtain sensitive
information.
Solution : See http://www.microsoft.com/technet/security/bulletin/ms03-034.mspx
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|