RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
BID:23255
Info
RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 23255 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 02 2007 12:00AM |
| Updated: | Apr 03 2007 04:52PM |
| Credit: | TWOVB Team is credited with the discovery of this issue. |
| Vulnerable: |
Microsoft Windows Vista Ultimate Microsoft Windows Vista Home Premium Microsoft Windows Vista Home Basic Microsoft Windows Vista Enterprise Microsoft Windows Vista Business |
| Not Vulnerable: | |
Discussion
RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
Microsoft Windows is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer.
A successful attack will result in denial-of-service conditions. Arbitrary code execution may also be possible, but this has not yet been confirmed.
NOTE: This BID is being retired because the reporter has admitted that the issue is a hoax.
Microsoft Windows is prone to a remote buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer.
A successful attack will result in denial-of-service conditions. Arbitrary code execution may also be possible, but this has not yet been confirmed.
NOTE: This BID is being retired because the reporter has admitted that the issue is a hoax.
Exploit / POC
RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution / Fix
RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].
References
RETIRED: Microsoft Windows SVCHost.EXE Remote Buffer Overflow Vulnerability
References:
References:
- Microsoft Homepage (Microsoft)
- Microsoft Windows Homepage (Microsoft )
- WOVB #01: Bypassing Vista Firewall, Flying over obstructive line] (TWOVB Team)
- The Week Of Vista Bugs [TWOVB]: The Truth (TWOVB Team)