|
|
Info |
Last Modified |
| about 1 year ago |
|
|
|
|
|
Description |
A local overflow exists in Microsoft Windows Explorer and Internet Explorer. The vulnerable products fail to properly check file share name lengths resulting in a buffer overflow. By tricking an authenticated local user on the system to browse or map a file server containing a specially crafted file share name, an attacker can cause Windows Explorer or Internet Explorer to crash and possibly execute arbitrary code resulting in a loss of confidentiality, integrity, and/or availability.
|
|
Classification |
Location:
Local Access Required
Attack Type:
Input Manipulation,
Other
Impact:
Loss of Confidentiality,
Loss of Integrity,
Loss of Availability
Exploit:
Exploit Unknown
|
|
Solution |
Currently, there are no known upgrades or patches to correct this issue. Although Microsoft has claimed the problem was fixed in XP SP 1 and 2000 SP 4, this has been disproved through testing. It is possible to correct the flaw by implementing the following workaround(s): Disabling the "Client for Microsoft Networks" on all network interfaces, which will stop all file share access. Additionally, filter SMB traffic on network edges.
|
|
Products |
|
Windows
 |
2000 Advanced Server |
2000 Datacenter Server |
2000 Professional |
2000 Server |
95 |
98 |
98 SE |
Millenium |
XP Home Edition |
XP Professional |
Internet Explorer
|
5.0.1 |
5.5 |
6 |
|
|
|
|
Credit |
- Rodrigo Gutierrez - rodrigo
 intellicomp.cl - Trustix AS
|
|
BlogsProvided by Technorati
|
None found at this time
|
|
|
