20 matches found
smb-vuln-ms07-029 NSE Script
Detects Microsoft Windows systems with Dns Server RPC vulnerable to MS07-029. MS07-029 targets the RDnssrvQuery and RDnssrvQuery2 RPC method which isa part of DNS Server RPC interface that serves as a RPC service for configuring and getting information from the DNS Server service. DNS Server RPC...
Microsoft DNS Server RPC Management Interface Buffer Overflow (MS07-029) - Ver2 (CVE-2007-1748)
The DNS server service is a component that provides name resolution services to a network.A buffer overflow vulnerability has been reported in the Microsoft Windows Domain Name System DNS Server services.An attacker may exploit this vulnerability to execute arbitrary code on a target system via a...
Microsoft DNS RPC Service extractQuotedChar() Overflow (TCP)
No description provided by source. $Id: ms07029msdnszonename.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and term...
Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)
No description provided by source. $Id: ms07029msdnszonename.rb 10503 2010-09-28 15:23:14Z hdm $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms...
Nmap NSE 6.01: smb-check-vulns
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Nmap NSE: SMB Check Vulnerabilities
This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Microsoft DNS RPC Service extractQuotedChar() Overflow (TCP)
$Id: ms07029msdnszonename.rb 9929 2010-07-25 21:37:54Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
MS07-029 Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB)
This module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This modul...
CVE-2007-1748
creationtimestamp| type| source ---|---|--- 2010-07-25 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16748 2010-09-28 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16366 2018-05-29 15:50:33+00:00| seen|...
MS07-029: Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)
The remote host has the Windows DNS server installed. There is a flaw in the remote version of this server that may allow an attacker to execute arbitrary code on the remote host with SYSTEM privileges. To exploit this flaw, an attacker needs to connect to the DNS server RPC interface and send...
Microsoft Security Bulletin MS07-029 Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution (935966)
Microsoft Security Bulletin MS07-029 Vulnerability in Windows DNS RPC Interface Could Allow Remote Code Execution 935966 Published: May 8, 2007 Version: 1.0 Summary Who Should Read this Document: Customers who use Microsoft Windows Impact of Vulnerability: Remote Code Execution Maximum Severity...
VulnCheck KEV: CVE-2007-1748
Stack-based buffer overflow in the RPC interface in the Domain Name System DNS Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape...
MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit
No description provided by source. / Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerabili...
msdns_zonename.rb.txt
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/projects/Framework/ require 'msf/core' module Msf class...
mswin-dns-overflow.txt
/ Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary erro...
MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit
Exploit for unknown platform in category remote exploits ======================================================== MS Windows DNS DnssrvQuery Remote Stack Overflow Exploit ======================================================== / Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuer...
Microsoft Windows - DNS DnssrvQuery Remote Stack Overflow
/ Copyright c 2007 devcode ^^ D E V C O D E ^^ Windows DNS DnssrvQuery Stack Overflow CVE-2007-1748 Description: A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary erro...
Immunity Canvas: MS07_029
Name| ms07029 ---|--- CVE| CVE-2007-1748 Exploit Pack| CANVAS Description| Microsoft DNS Server RPC Interface Overflow Notes| References: http://www.microsoft.com/technet/security/Bulletin/ms07-029.mspx CVE Name: CVE-2007-1748 VENDOR: Microsoft Notes: MSADV: MS07-029 Date public: 04/04/2007 CVE...
CVE-2007-1748
This CVE refers to a stack-based buffer overflow in the Microsoft DNS Server RPC interface (DnssrvQuery) that can be triggered by a long zone name containing escape sequences, leading to remote code execution. Affected products include Windows 2000 Server and Windows Server 2003 (SP1/SP2). The un...
Microsoft Security Advisory (935964) Vulnerability in RPC on Windows DNS Server Could Allow Remote Code Execution
Microsoft Security Advisory 935964 Vulnerability in RPC on Windows DNS Server Could Allow Remote Code Execution. Published: April 12, 2007 Microsoft is investigating new public reports of a limited attack exploiting a vulnerability in the Domain Name System DNS Server Service in Microsoft Windows...