Lucene search
+L

18 matches found

nvd
nvd
added 2009/11/11 7:30 p.m.19 views

CVE-2009-2523

The License Logging Server llssrv.exe in Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via an RPC message containing a string without a null terminator, which triggers a heap-based buffer overflow in the LlsrLicenseRequestW method, aka "License Logging Server Heap...

10CVSS7.8AI score0.26456EPSS
Exploits1References3
prion
prion
added 2009/11/11 7:30 p.m.16 views

Heap overflow

The License Logging Server llssrv.exe in Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via an RPC message containing a string without a null terminator, which triggers a heap-based buffer overflow in the LlsrLicenseRequestW method, aka "License Logging Server Heap...

10CVSS8.5AI score0.26456EPSS
Exploits1References3
cve
cve
added 2009/11/11 7:0 p.m.59 views

CVE-2009-2523

CVE-2009-2523 affects Microsoft Windows 2000 SP4 License Logging Server (llssrv.exe). The vulnerability is a remote code execution via a heap-based buffer overflow in the LlsrLicenseRequestW RPC handler when processing an RPC string that lacks a terminating null. Exploitation is unauthenticated a...

10CVSS7.7AI score0.26456EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2009/11/11 7:0 p.m.24 views

CVE-2009-2523

The License Logging Server llssrv.exe in Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via an RPC message containing a string without a null terminator, which triggers a heap-based buffer overflow in the LlsrLicenseRequestW method, aka "License Logging Server Heap...

7.8AI score0.26456EPSS
Exploits1References3
securityvulns
securityvulns
added 2009/11/11 12:0 a.m.50 views

TPTI-09-07: Microsoft Windows License Logging Service Heap Corruption Vulnerability

TPTI-09-07: Microsoft Windows License Logging Service Heap Corruption Vulnerability http://dvlabs.tippingpoint.com/advisory/TPTI-09-07 November 10, 2009 -- CVE ID: CVE-2009-2523 -- Affected Vendors: Microsoft -- Affected Products: Microsoft Windows 2000 -- TippingPointTM IPS Customer Protection:...

10CVSS0.6AI score0.26456EPSS
Exploits1
ptsecurity
ptsecurity
added 2009/11/11 12:0 a.m.5 views

PT-2009-4927 · Microsoft · Windows 2000 Sp4 +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows 2000 SP4 Description: The issue allows remote attackers to execute arbitrary code via a specially crafted RPC message, which triggers a heap-based buffer overflow. This can be exploited by sending a specially crafted network...

10CVSS7.5AI score0.26456EPSS
Exploits1References6
seebug
seebug
added 2009/11/11 12:0 a.m.34 views

Microsoft Windows License Logging服务远程堆溢出漏洞(MS09-064)

BUGTRAQ ID: 36921 CVE ID: CVE-2009-2523 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统中的License Logging服务(llssrv.exe)处理RPC调用的方式堆溢出漏洞。在处理传送给LlsrLicenseRequestW方式的参数时,字符数组应包含有终止的空字符。如果用户发送了没有空字符的恶意请求数据,就可以覆盖对lstrcatW的调用,触发这个溢出。 利用这个漏洞无需认证。攻击者可以通过向运行License...

10CVSS6.9AI score0.26456EPSS
Exploits1
securityvulns
securityvulns
added 2009/11/11 12:0 a.m.52 views

Microsoft Windows 2000 License Logging Server buffer overflow

Buffer overflow on RPC call parsing...

10CVSS4.3AI score0.26456EPSS
Exploits1References2
openvas
openvas
added 2009/11/11 12:0 a.m.22 views

Microsoft Windows License Logging Server Remote Code Execution Vulnerability (974783)

This host is missing a critical security update according to Microsoft Bulletin MS09-064. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

10CVSS5AI score0.26456EPSS
Exploits1References4
checkpoint_advisories
checkpoint_advisories
added 2009/11/10 12:0 a.m.19 views

Microsoft License Logging Server RPC Call Heap Overflow (MS09-064; CVE-2009-2523)

The License Logging service is a tool that was originally designed to help customers manage licenses for the Microsoft server products that are licensed in the Server Client Access License CAL model. License Logging service is one of the services used by Windows Small Business Server 2003 or...

10CVSS7.5AI score0.26456EPSS
Exploits1
symantec
symantec
added 2009/11/10 12:0 a.m.16 views

Microsoft Windows License Logging Server Remote Heap Buffer Overflow Vulnerability

Description The Microsoft Windows License Logging Server is prone to a remote heap-based buffer-overflow vulnerability because the application fails to perform adequate boundary checks on user-supplied data. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges...

Exploits0References1Affected Software1
nessus
nessus
added 2009/11/10 12:0 a.m.32 views

MS09-064: Vulnerability in the License Logging Service (974783)

The remote version of Windows contains a flaw in the Logging Service that may allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to send a malformed packet to the remote logging service, and would be able to either execute arbitrary code o...

10CVSS6.2AI score0.26456EPSS
Exploits1References2
canvas
canvas
added 2005/05/02 4:0 a.m.46 views

Immunity Canvas: MS05_010

Name| ms05010 ---|--- CVE| CVE-2005-0050 Exploit Pack| CANVAS Description| Microsoft License Logging Service Buffer Overflow Notes| References: http://www.microsoft.com/technet/security/Bulletin/MS05-010.mspx CVE Name: CVE-2005-0050 CVE Url: https://vulners.com/cve/CVE-2005-0050 CVSS: 10.0 Note:...

10CVSS6.6AI score0.46513EPSS
Exploits1
nvd
nvd
added 2005/05/02 4:0 a.m.23 views

CVE-2005-0050

The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service crash and possibly execute arbitrary code, aka the...

10CVSS7.5AI score0.46513EPSS
Exploits1References8
securityvulns
securityvulns
added 2005/03/17 12:0 a.m.22 views

Windows License Logging Service buffer overflow

Buffer overflow during request parsing...

4.6AI score
Exploits0References2
cvelist
cvelist
added 2005/02/08 5:0 a.m.27 views

CVE-2005-0050

The License Logging service for Windows NT Server, Windows 2000 Server, and Windows Server 2003 does not properly validate the length of messages, which leads to an "unchecked buffer" and allows remote attackers to cause a denial of service crash and possibly execute arbitrary code, aka the...

7.4AI score0.46513EPSS
Exploits1References8
cve
cve
added 2005/02/08 5:0 a.m.76 views

CVE-2005-0050

CVE-2005-0050 covers a remote code execution/DoS vulnerability in the Windows License Logging Service (LLS) affecting Windows NT Server, Windows 2000 Server, and Windows Server 2003. The root cause is an unchecked buffer due to improper validation of message lengths, enabling a specially crafted ...

10CVSS7.5AI score0.46513EPSS
Exploits1References8Affected Software3
cert
cert
added 2005/02/08 12:0 a.m.26 views

Microsoft License Logging Service buffer overflow

Overview A vulnerability in a component of some server versions of Microsoft Windows could allow a remote attacker to execute code on a vulnerable system. Description Microsoft's License Logging Service LLS assists in the management of licenses for some Microsoft server products. An error in the...

10CVSS7.4AI score0.46513EPSS
Exploits1References1
Rows per page
Query Builder