Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in NetDDE Could Allow Code Execution (841533) Vulnerability Scan
Vulnerability Scan Summary
Acertains if hotfix 841533 has been installed
Detailed Explanation for this Vulnerability Test
Arbitrary code can be executed on the remote host through NetDDE service.
The remote version of Windows is affected by a vulnerability in
Network Dynamic Data Exchange (NetDDE).
To exploit this flaw, NetDDE would have to be running and a possible hacker
with a specific knowledge of the vulnerability would need to send a malformed
NetDDE message to the remote host to overrun a given buffer.
A public exploit is available to exploit this vulnerability.
Microsoft has released a set of patches for Windows NT, 2000, XP and 2003:
Critical / CVSS Base Score : 10
Click HERE for more information and discussions on this network vulnerability scan.