Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
BID:21688
Info
Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
| Bugtraq ID: | 21688 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2006-6797 |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 20 2006 12:00AM |
| Updated: | Mar 27 2008 01:09PM |
| Credit: | NULL is credited with the discovery of this issue. |
| Vulnerable: |
Nortel Networks Centrex IP Client Manager 8.0 Nortel Networks Centrex IP Client Manager 7.0 Nortel Networks Centrex IP Client Manager 9.0 Microsoft Windows XP Tablet PC Edition SP2 Microsoft Windows XP Tablet PC Edition SP1 Microsoft Windows XP Tablet PC Edition Microsoft Windows XP Professional x64 Edition SP2 Microsoft Windows XP Professional x64 Edition Microsoft Windows XP Professional SP2 Microsoft Windows XP Professional SP1 Microsoft Windows XP Professional Microsoft Windows XP Media Center Edition SP2 Microsoft Windows XP Media Center Edition SP1 Microsoft Windows XP Media Center Edition Microsoft Windows XP Home SP2 Microsoft Windows XP Home SP1 Microsoft Windows XP Home Microsoft Windows XP Gold 0 Microsoft Windows XP Embedded SP1 Microsoft Windows XP Embedded Microsoft Windows XP 64-bit Edition Version 2003 SP1 Microsoft Windows XP 64-bit Edition Version 2003 Microsoft Windows XP 64-bit Edition SP1 Microsoft Windows XP 64-bit Edition Microsoft Windows XP 0 Microsoft Windows Vista x64 Edition 0 Microsoft Windows Vista Ultimate Microsoft Windows Vista Home Premium Microsoft Windows Vista Home Basic Microsoft Windows Vista Enterprise Microsoft Windows Vista Business Microsoft Windows Vista 0 Microsoft Windows Server 2003 Web Edition SP2 Microsoft Windows Server 2003 Web Edition SP1 Beta 1 Microsoft Windows Server 2003 Web Edition SP1 Microsoft Windows Server 2003 Web Edition Microsoft Windows Server 2003 Standard x64 Edition Microsoft Windows Server 2003 Standard Edition SP2 Microsoft Windows Server 2003 Standard Edition SP1 Beta 1 Microsoft Windows Server 2003 Standard Edition SP1 Microsoft Windows Server 2003 Standard Edition Microsoft Windows Server 2003 Itanium SP2 Microsoft Windows Server 2003 Itanium SP1 Microsoft Windows Server 2003 Itanium 0 Microsoft Windows Server 2003 Enterprise x64 Edition SP2 Microsoft Windows Server 2003 Enterprise x64 Edition Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1 Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Microsoft Windows Server 2003 Enterprise Edition Itanium 0 Microsoft Windows Server 2003 Enterprise Edition SP1 Beta 1 Microsoft Windows Server 2003 Enterprise Edition SP1 Microsoft Windows Server 2003 Enterprise Edition Microsoft Windows Server 2003 Datacenter x64 Edition SP2 Microsoft Windows Server 2003 Datacenter x64 Edition Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1 Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Microsoft Windows Server 2003 Datacenter Edition Itanium 0 Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1 Microsoft Windows Server 2003 Datacenter Edition SP1 Microsoft Windows Server 2003 Datacenter Edition Microsoft Windows 2000 Server SP4 Microsoft Windows 2000 Server SP3 Microsoft Windows 2000 Server SP2 Microsoft Windows 2000 Server SP1 Microsoft Windows 2000 Server Microsoft Windows 2000 Professional SP4 Microsoft Windows 2000 Professional SP3 Microsoft Windows 2000 Professional SP2 Microsoft Windows 2000 Professional SP1 Microsoft Windows 2000 Professional Microsoft Windows 2000 Datacenter Server SP4 Microsoft Windows 2000 Datacenter Server SP3 Microsoft Windows 2000 Datacenter Server SP2 Microsoft Windows 2000 Datacenter Server SP1 Microsoft Windows 2000 Datacenter Server Microsoft Windows 2000 Advanced Server SP4 Microsoft Windows 2000 Advanced Server SP3 Microsoft Windows 2000 Advanced Server SP2 Microsoft Windows 2000 Advanced Server SP1 Microsoft Windows 2000 Advanced Server HP Storage Management Appliance 2.1 Avaya Web Messenger 0 Avaya VPNmanagerTM Console 0 Avaya Visual Vector Client 0 Avaya Visual Messenger TM 0 Avaya Unified Messenger (r) 0 Avaya Unified Communication Center Avaya Speech Access 0 Avaya Outbound Contact Management 0 Avaya Operational Analyst 0 Avaya OctelDesignerTM 0 Avaya OctelAccess(r) Server 0 Avaya Network Reporting 0 Avaya Modular Messaging (MAS) Avaya Messaging Application Server MM 3.1 Avaya Messaging Application Server MM 3.0 Avaya Messaging Application Server MM 2.0 Avaya Messaging Application Server 0 Avaya IP Softphone 0 Avaya IP Agent 0 Avaya Interaction Center - Voice Quick Start 0 Avaya Interaction Center 0 Avaya Integrated Management Avaya Enterprise Management 0 Avaya CVLAN Avaya Customer Interaction Express (CIE) User Interface 1.0 Avaya Customer Interaction Express (CIE) Server 1.0 Avaya Contact Center Express 0 Avaya Computer Telephony 0 Avaya CMS Supervisor 0 Avaya Basic Call Management System Reporting Desktop server Avaya Basic Call Management System Reporting Desktop 0 Avaya Agent Access 0 |
| Not Vulnerable: | |
Discussion
Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
Microsoft Windows is prone to a local denial-of-service vulnerability because the operating system fails to handle certain API calls with unexpected parameters.
A local unprivileged attacker may exploit this issue by executing a malicious application.
Successful exploits will allow attackers to crash the operating system, denying further service to legitimate users.
Microsoft Windows is prone to a local denial-of-service vulnerability because the operating system fails to handle certain API calls with unexpected parameters.
A local unprivileged attacker may exploit this issue by executing a malicious application.
Successful exploits will allow attackers to crash the operating system, denying further service to legitimate users.
Exploit / POC
Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
The following exploit code is available:
The following exploit code is available:
Solution / Fix
Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
Solution:
Microsoft has released an advisory and fixes to address this issue. Please see the references for more information.
HP Storage Management Appliance is affected by the issue. Please see the referenced HP advisory for more information.
Microsoft Windows 2000 Server SP2
Microsoft Windows Server 2003 Datacenter Edition SP1
Microsoft Windows XP Media Center Edition SP2
Microsoft Windows 2000 Advanced Server SP1
Microsoft Windows 2000 Advanced Server SP2
Microsoft Windows Server 2003 Itanium SP1
Microsoft Windows Server 2003 Itanium 0
Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1
Microsoft Windows Server 2003 Enterprise Edition Itanium SP1
Microsoft Windows Vista x64 Edition 0
Microsoft Windows Server 2003 Datacenter x64 Edition SP2
Microsoft Windows XP Tablet PC Edition SP1
Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1
Microsoft Windows XP Tablet PC Edition SP2
Microsoft Windows XP Media Center Edition SP1
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
Microsoft Windows Server 2003 Web Edition SP2
Microsoft Windows Vista Home Premium
Microsoft Windows Server 2003 Standard Edition SP1
Microsoft Windows XP Professional x64 Edition SP2
Microsoft Windows Vista Enterprise
Microsoft Windows Server 2003 Standard Edition
Microsoft Windows Vista Business
Microsoft Windows 2000 Server SP1
Microsoft Windows Server 2003 Enterprise x64 Edition
Microsoft Windows XP Professional
Microsoft Windows XP Tablet PC Edition
Microsoft Windows 2000 Advanced Server
Microsoft Windows XP 0
Microsoft Windows 2000 Server
Microsoft Windows Server 2003 Datacenter Edition Itanium 0
Microsoft Windows Server 2003 Datacenter x64 Edition
Microsoft Windows Server 2003 Enterprise Edition SP1
Microsoft Windows 2000 Datacenter Server
Microsoft Windows Vista Home Basic
Microsoft Windows XP 64-bit Edition SP1
Microsoft Windows Server 2003 Standard Edition SP1 Beta 1
Microsoft Windows Server 2003 Datacenter Edition
Microsoft Windows 2000 Advanced Server SP4
Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1
Microsoft Windows Vista Ultimate
Microsoft Windows Server 2003 Web Edition SP1 Beta 1
Microsoft Windows XP Embedded
Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Professional SP3
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows 2000 Professional SP2
Microsoft Windows Server 2003 Standard Edition SP2
Microsoft Windows XP Home SP2
Microsoft Windows Server 2003 Enterprise Edition SP1 Beta 1
Microsoft Windows 2000 Datacenter Server SP4
Microsoft Windows 2000 Professional
Microsoft Windows Server 2003 Itanium SP2
Microsoft Windows Server 2003 Web Edition
Microsoft Windows 2000 Advanced Server SP3
Microsoft Windows XP Home
Microsoft Windows XP Embedded SP1
Microsoft Windows XP Home SP1
Solution:
Microsoft has released an advisory and fixes to address this issue. Please see the references for more information.
HP Storage Management Appliance is affected by the issue. Please see the referenced HP advisory for more information.
Microsoft Windows 2000 Server SP2
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition SP1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows XP Media Center Edition SP2
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows 2000 Advanced Server SP1
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows 2000 Advanced Server SP2
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Itanium SP1
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Itanium 0
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition Itanium SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition Itanium SP1
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Vista x64 Edition 0
-
Microsoft Windows6.0-KB930178-x64.msu
http://www.microsoft.com/downloads/details.aspx?familyid=c46f62e1-dddd -4886-a82b-ebec258a495b&displaylang=en
Microsoft Windows Server 2003 Datacenter x64 Edition SP2
-
Microsoft WindowsServer2003.WindowsXP-KB930178-x64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69dbe4bc-05a5 -450b-8c72-e431e800d4f3&displaylang=en
Microsoft Windows XP Tablet PC Edition SP1
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows XP Tablet PC Edition SP2
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows XP Media Center Edition SP1
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition Itanium 0
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Web Edition SP2
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows Vista Home Premium
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Server 2003 Standard Edition SP1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows XP Professional x64 Edition SP2
-
Microsoft WindowsServer2003.WindowsXP-KB930178-x64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=91fd8716-c1a2 -434e-bed0-df9d01e3d685&displaylang=en
Microsoft Windows Vista Enterprise
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Server 2003 Standard Edition
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows Vista Business
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows 2000 Server SP1
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Enterprise x64 Edition
-
Microsoft WindowsServer2003.WindowsXP-KB930178-x64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69dbe4bc-05a5 -450b-8c72-e431e800d4f3&displaylang=en
Microsoft Windows XP Professional
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows XP Tablet PC Edition
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows 2000 Advanced Server
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows XP 0
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows 2000 Server
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition Itanium 0
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Datacenter x64 Edition
-
Microsoft WindowsServer2003.WindowsXP-KB930178-x64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69dbe4bc-05a5 -450b-8c72-e431e800d4f3&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition SP1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows 2000 Datacenter Server
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Vista Home Basic
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows XP 64-bit Edition SP1
-
Microsoft WindowsServer2003.WindowsXP-KB930178-x64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=91fd8716-c1a2 -434e-bed0-df9d01e3d685&displaylang=en
Microsoft Windows Server 2003 Standard Edition SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows Server 2003 Datacenter Edition
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows 2000 Advanced Server SP4
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition Itanium SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Vista Ultimate
-
Microsoft Windows6.0-KB930178-x86.msu
http://www.microsoft.com/downloads/details.aspx?familyid=3487b1f0-a383 -41a4-a660-2768962b3bcd&displaylang=en
Microsoft Windows Server 2003 Web Edition SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows XP Embedded
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows 2000 Datacenter Server SP1
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows 2000 Professional SP3
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Standard Edition SP2
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows XP Home SP2
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows Server 2003 Enterprise Edition SP1 Beta 1
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows 2000 Datacenter Server SP4
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows 2000 Professional
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows Server 2003 Itanium SP2
-
Microsoft WindowsServer2003-KB930178-ia64-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=639de6c7-0928 -469a-be68-60ea391fa770&displaylang=en
Microsoft Windows Server 2003 Web Edition
-
Microsoft WindowsServer2003-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=4dac667d-b346 -461e-8bb5-6112e946349f&displaylang=en
Microsoft Windows 2000 Advanced Server SP3
-
Microsoft Windows2000-KB930178-x86-ENU.EXE
http://www.microsoft.com/downloads/details.aspx?familyid=909e3b63-4d11 -4fe6-849f-1ce960eb62cd&displaylang=en
Microsoft Windows XP Home
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows XP Embedded SP1
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
Microsoft Windows XP Home SP1
-
Microsoft WindowsXP-KB930178-x86-ENU.exe
http://www.microsoft.com/downloads/details.aspx?familyid=69876449-25d1 -41b4-b7c8-2b7fb40e59ee&displaylang=en
References
Microsoft Windows CSRSS HardError Messages Denial of Service Vulnerability
References:
References:
- Knowledge Base Article 930178 (Microsoft)
- New report of a Windows vulnerability (Microsoft)
- Nortel Security Advisory 2007007908 (Nortel Networks)
- Vendor Home Page (Microsoft)
- Microsoft Windows XP/2003/Vista memory corruption 0day (3APA3A)
- Re: [Full-disclosure] Microsoft Windows XP/2003/Vista memory corruption 0day (3APA3A)
- [security bulletin] HPSBST02208 SSRT071365 rev.1 - Storage Management Appliance ([email protected])
- csrss.exe double-free vulnerability - arbitrary DWORD overwrite exploit (Ruben Santamarta)
- [ SECURITY ADVISORY ] Centrex IP Client Manager (CICM) response to Microsoft Apr (Nortel)
- ASA-2007-159 MS07-021 Vulnerabilities in CSRSS Could Allow Remote Code Execution (Avaya)
- Microsoft Security Bulletin MS07-021 (Microsoft)
- NtRaiseHardError Csrss.exe memory Disclosure exploit (Ruben Santamarta)
- Vulnerability Note VU#740636 (US-CERT)
- Windows CSRSS HardError Message Box Vulnerability (Determina Security Research)