41 matches found
RPC Endpoint Mapper Service Elevation of Privilege Vulnerability
...
KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...
RPC 权限许可和访问控制问题漏洞
Microsoft Windows and Microsoft Windows Server are both products of Microsoft Corporation.Microsoft Windows is an operating system for personal devices.Microsoft Windows Server is a server operating system. An elevation of privilege vulnerability exists in the RPC Endpoint Mapper Service in...
KLA12139 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to obtain sensitive information, bypass security restrictions, gain privileges, execute arbitrary code, cause denial of service, spoof user interface. Below is a complete list of...
PT-2021-2705 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: The issue is related to the RPC Endpoint Mapper Service and is caused by insecure privilege management. It allows an attacker to elevate their privileges. Recommendations: At the moment,...
KB5001382: Windows 8.1 and Windows Server 2012 R2 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - RPC Endpoint Mapper Service Elevation o...
KB5001387: Windows Server 2012 Security Update (Apr 2021)
The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - RPC Endpoint Mapper Service Elevation o...
Microsoft Windows: Enable RPC Endpoint Mapper Client Authentication
This test checks the setting for policy OpenVAS Vulnerability Test $Id: winrpcendpointmapper.nasl 11344 2018-09-12 06:57:52Z emoss $ Check value for Enable RPC Endpoint Mapper Client Authentication Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net...
msrpc-enum NSE Script
Queries an MSRPC endpoint mapper for a list of mapped services and displays the gathered information. As it is using smb library, you can specify optional username and password to use. Script works much like Microsoft's rpcdump tool or dcedump tool from SPIKE fuzzer. Script Arguments randomseed,...
There are no more endpoints available from the endpoint mapper server
Challenge A Backup job with Application-Aware Processing enabled fails with the error: There are no more endpoints available from the endpoint mapper server Cause The error is being relayed by Veeam Backup & Replication from the Guest OS. RPC is not functioning correctly. Solution Before running ...
Windows Local Procedure Call Privilege Elevation Vulnerability (2360937)
This host is missing a critical security update according to Microsoft Bulletin MS10-084. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Hidden DCERPC Service Discovery
This module will query the endpoint mapper and make a list of all ncacntcp RPC services. It will then connect to each of these services and use the management API to list all other RPC services accessible on this port. Any RPC service found attached to a TCP port, but not listed in the endpoint...
Endpoint Mapper Service Discovery
This module can be used to obtain information from the Endpoint Mapper service. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Endpoint Mapper Service Discovery', 'Description' = %q This modul...
Detect the HTTP RPC endpoint mapper
This detects the http-rpc-epmap service by connecting to the port 593 and processing the buffer received. This endpoint mapper provides CIS COM+ Internet Services parameters like port 135 epmap for RPC. SPDX-FileCopyrightText: 2005 Alert4Web.com Some text descriptions might be excerpted from a...
Microsoft Windows - DCOM RPC Interface Buffer Overrun
source: https://www.securityfocus.com/bid/8205/info A buffer overrun vulnerability has been reported in Microsoft Windows that can be exploited remotely via a DCOM RPC interface that listens on TCP/UDP port 135. The issue is due to insufficient bounds checking of client DCOM object activation...
CVE-2002-1561
The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service disabled RPC service via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference...
MS03-010: Flaw in RPC Endpoint Mapper Could Allow Denial of Service Attacks (331953)
A flaw exists in the RPC endpoint mapper that can be used by an attacker to disable it remotely. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11485; scriptversion"1.46"; scriptcvsdate"Date: 2018/11/15 20:50:29"; scriptcveid"CVE-2002-1561"; scriptbugtraqid6005;...
Microsoft Windows RPC service vulnerable to DoS via NULL pointer dereference
Overview The RPC service in Microsoft Windows NT 4.0, 2000, and XP can be terminated by a specially crafted RPC message. A remote attacker could cause a denial of service. Description According to Microsoft Security Bulletin MS03-010, "Remote Procedure Call RPC is a protocol used by the Windows...
CVE-2001-0662
RPC endpoint mapper in Windows NT 4.0 allows remote attackers to cause a denial of service loss of RPC services via a malformed request...
CVE-2001-0662
RPC endpoint mapper in Windows NT 4.0 allows remote attackers to cause a denial of service loss of RPC services via a malformed request...