Download
| Alert*
oval:org.mitre.oval:def:6410
Heap-based buffer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 and Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted WINS replication packet that triggers an incorrect buffer-length calculation, aka "WINS Heap Overflow Vu ... oval:org.secpod.oval:def:2290 The host is missing a critical security update according to Microsoft security bulletin, MS09-039. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Internet Name Service (WINS), which fails to handle specially crafted WINS replication packet. ... |