MS.Message.Queuing.Service.Buffer.Overflow
Description
This indicates an attempt to exploit a remote code-execution vulnerability in the Microsoft Message Queuing Service.
This vulnerability is caused by the incorrect validation of user-supplied strings before copying them to a fixed size buffer. A remote attacker may exploit this to execute arbitrary code.
Affected Products
Microsoft Windows 2000 Server Service Pack 4
Microsoft Windows 2000 Professional Service Pack 4
Microsoft Windows XP Service Pack 2
Impact
System Compromise: Remote code execution.
Recommended Actions
Apply the appropriate patch:
Microsoft Windows 2000:
http://www.microsoft.com/downloads/details.aspx?FamilyId=bda9d0b4-f7cb-4d9d-b030-043d7437734b
Microsoft Windows XP:
http://www.microsoft.com/downloads/details.aspx?FamilyId=09d4e6ae-5d19-4f11-bb7e-60cee8263bc8
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |