| VID |
26352 |
| Severity |
30 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The hotfix (MS08-036, KB950762) for 'Vulnerabilities in Pragmatic General Multicast (PGM)' has not been applied. Microsoft Windows Microsoft Windows is vulnerable to multiple denial of service vulnerabilities in the Pragmatic General Multicast (PGM) protocol installed with the MSMQ service. By sending specially-crafted PGM packets, a remote attacker could cause the system to become non-responsive and require a restart to restore functionality.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx
* Platforms Affected:
Microsoft Windows XP SP3
Microsoft Windows 2003 Server SP2
Microsoft Windows Vista SP1
Microsoft Windows 2008 |
| Recommendation |
Apply the appropriate patch (KB950762) for your system, as listed in Microsoft Security Bulletin MS08-036 at http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2008-1451 (CVE) |
| Related URL |
29588 (SecurityFocus) |
| Related URL |
42683,42684 (ISS) |
|
