[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

112965

 
 

909

 
 

87854

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in Host Integration Server - MS08-059

ID: oval:org.secpod.oval:def:3184Date: (C)2011-11-22   (M)2018-06-03
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. Successful exploitation could allow an attacker to obtain credentials and it could also allow attackers to take complete control of an affected system.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Product:
Microsoft Host Integration Server 2000
Microsoft Host Integration Server 2004
Microsoft Host Integration Server 2004 Client
Microsoft Host Integration Server 2006
Reference:
MS08-059
CVE-2008-3466
CVE    1
CVE-2008-3466
CPE    6
cpe:/a:microsoft:host_intergration_server:2004:SP1
cpe:/a:microsoft:host_intergration_server:2004
cpe:/a:microsoft:host_intergration_server:2000:SP2
cpe:/a:microsoft:host_integration_server_client:2004:-
...
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-7
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-2000
...

© SecPod Technologies