6.5 Medium
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.29 Low
EPSS
Percentile
96.8%
The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly maintain its internal state, which allows remote attackers to overwrite arbitrary memory locations via a crafted RPC message that triggers incorrect pointer reading, related to βIDL interfaces containing a non-conformant varying arrayβ and FC_SMVARRAY, FC_LGVARRAY, FC_VARIABLE_REPEAT, and FC_VARIABLE_OFFSET, aka βRPC Marshalling Engine Vulnerability.β
blogs.technet.com/srd/archive/2009/06/09/ms09-026-how-a-developer-can-know-if-their-rpc-interface-is-affected.aspx
osvdb.org/54936
www.securityfocus.com/bid/35219
www.securitytracker.com/id?1022357
www.us-cert.gov/cas/techalerts/TA09-160A.html
www.vupen.com/english/advisories/2009/1545
docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-026
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6227