3 matches found
Microsoft Windows RPC认证远程拒绝服务漏洞(MS07-058)
BUGTRAQ ID: 25974 CVECAN ID: CVE-2007-2228 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统在处理RPC认证时存在漏洞,远程攻击者可能利用此漏洞导致系统拒绝服务。 漏洞具体存在于RPC运行时库rpcrt4.dll解析RPC级认证消息期间。在解析认证类型为NTLMSSP且认证级别为PACKET的报文时,如果验证尾部签名被初始化为0而不是标准的NTLM签名,就会出现无效的内存引用。成功利用这个漏洞可能导致RPC服务及整个操作系统崩溃。 Microsoft Windows XP SP2 Microsoft...
Microsoft Windows RPC NTLMSSP Authentication Denial of Service (MS07-058; CVE-2007-2228)
Remote Procedure Call RPC is a protocol that a program can use to request a service from another program which is located on another computer in a network. Microsoft Remote Procedure Call MS-RPC is Microsoft's implementation of RPC. MS-RPC uses the NTLM NT LAN Manager authentication protocol...
CVE-2007-2228
rpcrt4.dll aka the RPC runtime library in Microsoft Windows XP SP2, XP Professional x64 Edition, Server 2003 SP1 and SP2, Server 2003 x64 Edition and x64 Edition SP2, and Vista and Vista x64 Edition allows remote attackers to cause a denial of service RPCSS service stop and system restart via an...