Tenable Network Security

	Nessus
	Download
	Plugins
	Newest Plugins
	Obtain an activation code
	View all plugins
	Search
	Documentation
	Register
	Buy Now
	ProfessionalFeed Support
	Bugs
	All the Tenable Products

MS03-039: Microsoft RPC Interface Buffer Overrun (824146) (uncredentialed check)

This script is Copyright (C) 2005-2010 Tenable Network Security, Inc.


Family	Windows
Nessus Plugin ID	11835 (msrpc_dcom2.nasl)
Bugtraq ID	8458 8460
CVE ID	CVE-2003-0715 CVE-2003-0528 CVE-2003-0605

Description:
Synopsis : Arbitrary code can be executed on the remote host. Description : The remote host is running a version of Windows that has a flaw in its RPC interface, which may allow an attacker to execute arbitrary code and gain SYSTEM privileges. An attacker or a worm could use it to gain the control of this host. Note that this is NOT the same bug as the one described in MS03-026, which fixes the flaw exploited by the 'MSBlast' (or LoveSan) worm. Solution : http://www.microsoft.com/technet/security/bulletin/MS03-039.mspx Risk factor : Critical / CVSS Base Score : 10.0 (CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

This is the web site for the Nessus Vulnerability Scanner from Tenable Network Security. If you are looking for the probabilistic analysis software from Southwest Research Institute, please visit www.nessus.swri.org

MS03-039: Microsoft RPC Interface Buffer Overrun (824146) (uncredentialed check)