| VID |
26111 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Hotfix(KB871250) for 'Vulnerability in the Indexing Service' has not been applied. This update resolves several newly-discovered, privately reported and public vulnerabilities. Microsoft Windows XP and Server 2003 could allow a remote attacker to execute arbitrary code on the system, caused by improper validation of queries by the Indexing Service, which is not enabled by default. An attacker could exploit this vulnerability by constructing a malicious query that could potentially allow remote code execution on an affected system. While remote code execution is possible, an attack would most likely result in a denial of service condition.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms05-003.mspx
http://www.ciac.org/ciac/bulletins/p-095.shtml
* Platforms Affected:
Microsoft Windows 2000 Any version SP4
Microsoft Windows XP Any version SP1
Microsoft Windows XP 64-Bit Edition SP1
Microsoft Windows XP 64-Bit Edition Version 2003
Microsoft Windows Server 2003 Any version |
| Recommendation |
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-003 at http://www.microsoft.com/technet/security/bulletin/ms05-003.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2004-1049,CVE-2004-1305 (CVE) |
| Related URL |
12094,12095,12233 (SecurityFocus) |
| Related URL |
18667,18668 (ISS) |
|
