Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2002 SECNAP Network Security, LLCOPENVAS:136141256231011194
HistoryNov 03, 2005 - 12:00 a.m.

Unchecked Buffer in XP Shell Could Enable System Compromise (329390)

2005-11-0300:00:00
Copyright (C) 2002 SECNAP Network Security, LLC
plugins.openvas.org
8

6.6 Medium

AI Score

Confidence

Low

0.1 Low

EPSS

Percentile

94.9%

JSON

It is possible for a malicious user to mount a buffer
overrun attack using windows XP shell.

# SPDX-FileCopyrightText: 2002 SECNAP Network Security, LLC
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.11194");
  script_version("2023-08-03T05:05:16+0000");
  script_tag(name:"last_modification", value:"2023-08-03 05:05:16 +0000 (Thu, 03 Aug 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_cve_id("CVE-2002-1327");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Unchecked Buffer in XP Shell Could Enable System Compromise (329390)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2002 SECNAP Network Security, LLC");
  script_family("Windows : Microsoft Bulletins");
  script_dependencies("secpod_reg_enum.nasl");
  script_mandatory_keys("SMB/registry_enumerated");

  script_tag(name:"summary", value:"It is possible for a malicious user to mount a buffer
  overrun attack using windows XP shell.");

  script_tag(name:"impact", value:"A successful attack could have the effect of either causing
  the Windows Shell to fail, or causing an attacker's code to run on
  the user's computer in the security context of the user.");

  script_tag(name:"affected", value:"Microsoft Windows XP.");

  script_tag(name:"solution", value:"The vendor has released updates. Please see the references for more information.");

  script_xref(name:"URL", value:"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-072");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/6427");

  script_tag(name:"qod_type", value:"registry");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("secpod_reg.inc");

if ( hotfix_check_sp(xp:2) <= 0 ) exit(0);
if ( hotfix_missing(name:"Q329390") > 0 )
  security_message(port:0);

Related

securityvulns 1
cve 1
cert 1
openvas 1
nessus 1
cvelist 1
securityvulns
securityvulns
Foundstone Research Labs Advisory - Exploitable Windows XP Media Files &#40;fwd&#41;
2002-12-19 00:00:00
cve
cve
CVE-2002-1327
2002-12-26 05:00:00
cert
cert
Buffer overflow in Microsoft Windows Shell
2002-12-19 00:00:00
openvas
openvas
Unchecked Buffer in XP Shell Could Enable System Compromise (329390)
2005-11-03 00:00:00
nessus
nessus
MS02-072: Unchecked Buffer in XP Shell Could Enable System Compromise (329390)
2002-12-19 00:00:00
cvelist
cvelist
CVE-2002-1327
2004-09-01 04:00:00

6.6 Medium

AI Score

Confidence

Low

0.1 Low

EPSS

Percentile

94.9%

JSON
Related for OPENVAS:136141256231011194
securityvulns1cve1cert1openvas1nessus1cvelist1