|
Family: Windows : Microsoft Bulletins --> Category: infos
Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (923980) Vulnerability Scan
Vulnerability Scan Summary Acertains the presence of update 923980
Detailed Explanation for this Vulnerability Test
Synopsis :
A flaw in the client service for NetWare may allow a possible hacker to execute
arbitrary code on the remote host.
Description :
The remote host contains a version of the Client Service for NetWare which
is vulnerable to a buffer overflow. A possible hacker may exploit this to
cause a denial of service by sending a malformed IPX packet to the remote
host, or to execute arbitrary code by exploiting a flaw in the NetWare client.
Solution :
Microsoft has released a set of patches for Windows 2000, XP and 2003 :
http://www.microsoft.com/technet/security/bulletin/ms06-066.mspx
Threat Level:
High / CVSS Base Score : 7.0
(AV:R/AC:L/Au:NR/C:P/I:P/A:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|