SecurityTracker.com Archives - Microsoft Message Queuing (MSMQ) Buffer Overflow Lets Remote Users Execute Arbitrary Code

	Keep Track of the Latest Vulnerabilities with SecurityTracker!

Home | View Topics | Search | Contact Us | Help |

SecurityTracker
Archives

Welcome to SecurityTracker!

Click to Sign Up

Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary

Instant Alerts

Buy our Premium Vulnerability Notification Service to receive customized, instant alerts

Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!

Become a Partner and License Our Database or Notification Service

Report a Bug

Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com

Sign Up!

Category: OS (Microsoft) > Microsoft Message Queuing (MSMQ)

Vendors: Microsoft

Microsoft Message Queuing (MSMQ) Buffer Overflow Lets Remote Users Execute Arbitrary Code

SecurityTracker Alert ID: 1019077

SecurityTracker URL: http://securitytracker.com/id?1019077

CVE Reference: CVE-2007-3039 (Links to External Site)

Date: Dec 11 2007

Impact: Execution of arbitrary code via local system, Execution of arbitrary code via network, User access via local system, User access via network

Fix Available: Yes Vendor Confirmed: Yes

Advisory: Microsoft Security Bulletin

Version(s): 2000 SP4, XP SP2

Description: A vulnerability was reported in Microsoft Message Queuing (MSMQ). On Windows 2000 Server, a remote user can execute arbitrary code on the target system. On Windows 2000 Professional and Windows XP, a local user can obtain elevated privileges on the target system.

A remote user can send specially crafted data to trigger a buffer overflow and execute arbitrary code on the target Windows 2000 Server system. The code will run with Local System privileges.

A local user can trigger a buffer overflow to execute arbitrary code on the target Windows 2000 Professional and Windows XP system with elevated privileges.

TippingPoint and Venustech of ADLABS reported this vulnerability.

Impact: A remote user can execute arbitrary code on the target system.

A local user can obtain elevated privileges on the target system.

Solution: The vendor has issued the following fixes:

Microsoft Windows 2000 Server Service Pack 4 and Microsoft Windows 2000 Professional Service Pack 4:

http://www.microsoft.com/downloads/details.aspx?FamilyId=bda9d0b4-f7cb-4d9d-b030-043d7437734b

Windows XP Service Pack 2:

http://www.microsoft.com/downloads/details.aspx?FamilyId=09d4e6ae-5d19-4f11-bb7e-60cee8263bc8

A restart is required.

The Microsoft advisory is available at:

http://www.microsoft.com/technet/security/bulletin/ms07-065.mspx

Vendor URL: www.microsoft.com/technet/security/bulletin/ms07-065.mspx (Links to External Site)

Cause: Boundary error

Underlying OS: Windows (2000), Windows (XP)

Message History: None.

Source Message Contents

Date: Tue, 11 Dec 2007 13:50:22 -0500
Subject: Microsoft Security Bulletin MS07-065 Important: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894)

 
 
http://www.microsoft.com/technet/security/bulletin/ms07-065.mspx
 
CVE-2007-3039

Go to the Top of This SecurityTracker Archive Page

Home | View Topics | Search | Contact Us | Help
Copyright 2007, SecurityGlobal.net LLC