Detections
Analytics

Microsoft Data Access Components RDS Data Stub Remote Overflow

high Nessus Plugin ID 11161

Synopsis

The remote host is affected by a remote buffer overflow vulnerability.

Description

The remote DLL /msadc/msadcs.dll is accessible by anyone. Several flaws have been found in it in the past. We recommend that you restrict access to MSADC only to trusted hosts.

Solution

- Launch the Internet Services Manager
 - Select your web server
 - Right-click on MSADC and select 'Properties'
 - Select the tab 'Directory Security'
 - Click on the 'IP address and domain name restrictions' option
 - Make sure that by default, all computers are DENIED access to this resource
 - List the computers that should be allowed to use it

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2002/ms02-065

https://seclists.org/vulnwatch/2002/q4/60

Plugin Details

Severity: High

ID: 11161

File Name: msadcs_overflow.nasl

Version: 1.41

Type: remote

Family: Web Servers

Published: 11/22/2002

Updated: 11/15/2018

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.0

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 11/20/2002

Exploitable With

Metasploit (MS02-065 Microsoft IIS MDAC msadcs.dll RDS DataStub Content-Type Overflow)

Reference Information

CVE: CVE-2002-1142

BID: 6214

MSFT: MS02-065

MSKB: 329414