MS.WINS.Replication.Integer.Overflow
Description
This indicates an attack attempt against an integer overflow vulnerability in the Windows Internet Name Service (WINS) on Windows.
The vulnerability exists because the affected software doesn't check user-supplied data which is used to calculate buffer size to allocate. It may allow a remote attacker to execute arbitrary code via sending a crafted packet.
Affected Products
Windows 2000 Server
Windows 2003 Server
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply patch, available from the website.
http://www.microsoft.com/technet/security/Bulletin/MS09-039.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |