| VID |
26144 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (KB890046) for 'Spoofing Vulnerability in Microsoft Agent' has not been applied. Windows 98, Me, 2000, XP and Server 2003 could allow an attacker to spoof trusted Internet content (e.g. hide various security prompts by a Microsoft Agent character) by exploiting a vulnerability in the Microsoft Agent. Users could believe that they are accessing trusted Internet content. However, they are accessing malicious Internet content such as a malicious Web site. To exploit this vulnerability, an attacker would first have to persuade a user to visit the attacker's site to attempt to exploit this vulnerability.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx
http://secunia.com/advisories/15689
* Platforms Affected:
Microsoft Windows 98, Me
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows Server 2003 Service Pack 1 |
| Recommendation |
Apply the appropriate patch (KB890046) for your system, as listed in Microsoft Security Bulletin MS05-032 at http://www.microsoft.com/technet/security/bulletin/ms05-032.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2005-1212 (CVE) |
| Related URL |
13944 (SecurityFocus) |
| Related URL |
20829 (ISS) |
|
