Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

seebug.org
seebug.orgadded 2009/08/12 12:0 a.m.35 views

Microsoft Windows WINS Server网络报文整数溢出漏洞(MS09-039)

BUGTRAQ ID: 35981 CVECAN ID: CVE-2009-1924 Microsoft Windows是微软发布的非常流行的操作系统。 Windows服务器上的WINS.exe进程用于为NetBIOS网络提供名称解析服务。在从受信任的WINS复制伙伴收到特制WINS报文中时没有充分验证数据结构,如果远程攻击者提供了特制的请求,就可以触发整数溢出,导致以SYSTEM权限执行任意代码。 Microsoft Windows 2000 Server SP4 临时解决方法: 在防火墙上屏蔽TCP 42和UDP 42端口。 厂商补丁: Microsoft ---------...

9.3CVSS6.9AI score0.20038EPSS
Exploits1
seebug.org
seebug.orgadded 2009/08/12 12:0 a.m.41 views

Microsoft Windows WINS Server网络报文堆溢出漏洞(MS09-039)

BUGTRAQ ID: 35980 CVECAN ID: CVE-2009-1923 Microsoft Windows是微软发布的非常流行的操作系统。 Windows服务器上的WINS.exe进程用于为NetBIOS网络提供名称解析服务。在解析push请求时WINS服务将报文数据拷贝到了静态的堆缓冲区上。如果远程攻击者提供了特制的请求,就可以触发堆溢出,导致以SYSTEM权限执行任意代码。 Microsoft Windows Server 2003 SP2 Microsoft Windows 2000 Server SP4 临时解决方法: 在防火墙上屏蔽TCP 42和UDP 42端口。...

9.3CVSS6.9AI score0.37118EPSS
Exploits1
Check Point Advisories
Check Point Advisoriesadded 2009/08/11 12:0 a.m.1 views

Microsoft WINS Buffer Length Heap Overflow (MS09-039; CVE-2009-1923)

Windows Internet Naming Service WINS was designed specifically to support NetBIOS over TCP/IP NetBT, and is required for any environment in which users access resources that have NetBIOS names. A remote code execution vulnerability has been discovered in Microsoft WINS. The vulnerability is due t...

9.3CVSS7.8AI score0.37118EPSS
Exploits1
Rows per page
Query Builder