MS.WINS.Replication.Integer.Overflow

description-logoDescription

This indicates an attack attempt against an integer overflow vulnerability in the Windows Internet Name Service (WINS) on Windows.
The vulnerability exists because the affected software doesn't check user-supplied data which is used to calculate buffer size to allocate. It may allow a remote attacker to execute arbitrary code via sending a crafted packet.

affected-products-logoAffected Products

Windows 2000 Server
Windows 2003 Server

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply patch, available from the website.
http://www.microsoft.com/technet/security/Bulletin/MS09-039.mspx

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)