[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerability in Host Integration Server - MS08-059

ID: oval:org.secpod.oval:def:3184Date: (C)2011-11-22   (M)2017-10-04
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. Successful exploitation could allow an attacker to obtain credentials and it could also allow attackers to take complete control of an affected system.

Platform:
Microsoft Windows 2000
Microsoft Windows XP
Microsoft Windows Server 2003
Microsoft Windows Vista
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows 8
Microsoft Windows Server 2012
Microsoft Windows 8.1
Microsoft Windows Server 2012 R2
Product:
Microsoft Host Integration Server 2000
Microsoft Host Integration Server 2004
Microsoft Host Integration Server 2004 Client
Microsoft Host Integration Server 2006
Reference:
MS08-059
CVE-2008-3466
CVE    1
CVE-2008-3466
CPE    6
cpe:/a:microsoft:host_intergration_server:2000:SP2
cpe:/a:microsoft:host_integration_server_client:2004:-
cpe:/a:microsoft:host_integration_server_client:2004:sp1
cpe:/a:microsft:host_integration_server:2000::administrator_client
...
XCCDF    7
xccdf_com.secpod_benchmark_microsoft-windows-7
xccdf_com.secpod_benchmark_microsoft-windows-server-2008
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_com.secpod_benchmark_microsoft-windows-2000
...

© 2013 SecPod Technologies