Microsoft Windows Remote Desktop Protocol (RDP) Crafted Packet Remote DoS

2005-08-09T16:54:21
ID OSVDB:18624
Type osvdb
Reporter Tom Ferris(tommy@security-protocols.com)
Modified 2005-08-09T16:54:21

Description

Vulnerability Description

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted RDP packet is sent by an attacker, which causes a memory fault within the rdpwd.sys driver file, and will result in loss of availability for the platform.

Technical Description

By default, services that utilize the Remote Desktop Protocol (RDP) are not enabled except on Windows XP Media Center Edition.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Microsoft has released a patch to address this vulnerability.

Short Description

Windows contains a flaw that may allow a remote denial of service. The issue is triggered when a specially crafted RDP packet is sent by an attacker, which causes a memory fault within the rdpwd.sys driver file, and will result in loss of availability for the platform.

References:

Vendor Specific Advisory URL Security Tracker: 1014498 Secunia Advisory ID:16071 Other Advisory URL: http://security-protocols.com/modules.php?name=News&file=article&sid=2783 Other Advisory URL: http://www.security-protocols.com/modules.php?name=News&file=article&sid=2852 Other Advisory URL: http://security-protocols.com/modules.php?name=News&file=article&sid=2852 Other Advisory URL: http://www.securiteam.com/windowsntfocus/5VP0B00GKS.html Microsoft Security Bulletin: MS05-041 Microsoft Knowledge Base Article: 899591 Mail List Post: http://archives.neohapsis.com/archives/dailydave/2005-q3/0095.html Mail List Post: http://archives.neohapsis.com/archives/dailydave/2005-q3/0091.html Mail List Post: http://archives.neohapsis.com/archives/dailydave/2005-q3/0094.html Generic Informational URL: http://www.frsirt.com/exploits/20050809.remoteass.spk.php Generic Exploit URL: http://www.securiteam.com/exploits/5XP0D00GKE.html Generic Exploit URL: http://www.security-protocols.com/released/xp-sp2-rdp-dos.rar CVE-2005-2303 CVE-2005-1218 CERT VU: 490628 Bugtraq ID: 14259