Alerts
Alerts
Zero-Day Tracker
Common Name:
Microsoft DNS RPC Buffer Overflow
Date Disclosed:
4/7/2007
Date Patched:
5/8/2007
Vendor:
Microsoft
Application:
Windows 2000
Windows 2003
Description:
A remote code execution vulnerability exists within Microsoft's DNS Server service. Utilizing RPC functionality designed for remote management, an attacker is able to anonymously cause a stack-based buffer overflow. This code is executed under the context of SYSTEM, allowing for full system compromise.
eEye Research is currently investigating the vulnerability and active exploitation and will update this ZDT entry as more information becomes available.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution as SYSTEM
This vulnerability can be exploited anonymously against Microsoft's DNS Server, allowing for a remote attacker to run arbitrary code under SYSTEM in order to obtain full system access.
Mitigation:
Since a vendor-supplied patch has been released, the best form of mitigation is to apply MS07-029.
Protection:
MS07-029
Links:
Microsoft Security Advisory (935964)
ISC Handler's Diary
CVE-2007-1748
Public PoC Code Disclosure (Reverse Shell)
Status:
4/7/2007: First Signs Of Active Exploitation
4/14/2007: First Exploit Tool Released
5/8/2007: MS07-029 Released
Common Name:
Microsoft DNS RPC Buffer Overflow
Date Disclosed:
4/7/2007
Date Patched:
5/8/2007
Vendor:
Microsoft
Application:
Windows 2000
Windows 2003
Description:
A remote code execution vulnerability exists within Microsoft's DNS Server service. Utilizing RPC functionality designed for remote management, an attacker is able to anonymously cause a stack-based buffer overflow. This code is executed under the context of SYSTEM, allowing for full system compromise.
eEye Research is currently investigating the vulnerability and active exploitation and will update this ZDT entry as more information becomes available.
Severity:
High
Code Execution:
Yes
Impact:
Arbitrary code execution as SYSTEM
This vulnerability can be exploited anonymously against Microsoft's DNS Server, allowing for a remote attacker to run arbitrary code under SYSTEM in order to obtain full system access.
Mitigation:
Since a vendor-supplied patch has been released, the best form of mitigation is to apply MS07-029.
Protection:
- eEye's Blink® Personal Edition protects from this vulnerability.
- eEye's Blink® Professional Edition protects from this vulnerability.
- eEye's Retina® Network Security Scanner scans devices to detect for this vulnerability.
MS07-029
Links:
Microsoft Security Advisory (935964)
ISC Handler's Diary
CVE-2007-1748
Public PoC Code Disclosure (Reverse Shell)
Status:
4/7/2007: First Signs Of Active Exploitation
4/14/2007: First Exploit Tool Released
5/8/2007: MS07-029 Released
