| VID |
12060 |
| Severity |
30 |
| Port |
2702 |
| Protocol |
TCP |
| Class |
MSSMS |
| Detailed Description |
The Microsoft Systems Management Server is vulnerable to a remote denial of service vulnerability.
Microsoft's Systems Management Server (SMS) is a change and configuration management server for Microsoft Windows platforms. SMS version 2.50.2726.0 and possibly other versions are vulnerable to a remote denial of service attack. By sending the "RCH0####RCHE" string followed by a large number of characters (over 130) to the SMS Remote Control Client service is listening on TCP ports 2701 and 2702, a remote attacker could cause the affected service to crash.
* References:
http://www.securityfocus.com/archive/1/368911
http://www.securityfocus.com/archive/1/369835
* Platforms Affected:
Microsoft Systems Management Server 2.50.2726.0
Microsoft Windows Any version |
| Recommendation |
No upgrade or patch available as of July 2004. |
| Related URL |
CVE-2004-0728 (CVE) |
| Related URL |
10726 (SecurityFocus) |
| Related URL |
16696 (ISS) |
|
