| VID |
28080 |
| Severity |
40 |
| Port |
135 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The Windows host is vulnerable to multiple vulnerabilities in Microsoft RPC/DCOM implementation.
An remote attacker who successfully exploited the most severe of these vulnerabilities could take complete control of the affected system. The attacker could then take any action on the affected system, including installing programs; viewing, changing, or deleting data; or creating new accounts that have full privileges.
RPC Runtime Library Vulnerability: CAN-2003-0813
RPCSS Service Vulnerability: CAN-2004-0116
COM Internet Services (CIS) - RPC over HTTP Vulnerability: CAN-2003-0807
Object Identity Vulnerability: CAN-2004-0124
* References:
http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
* Platforms Affected:
Microsoft Windows NT 4.0 Any version
Microsoft Windows 2000 Any version
Microsoft Windows XP Any version
Microsoft Windows 2003 Any version |
| Recommendation |
Apply the Cumulative Update for Microsoft RPC/DCOM, as listed in Microsoft's security bulletin MS04-012, http://www.microsoft.com/technet/security/bulletin/ms04-012.mspx
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2003-0813,CVE-2004-0116,CVE-2003-0807,CVE-2004-0124 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
15709 (ISS) |
|
