04.13.07

Remote Code Execution in RPC on Windows DNS Server

Posted in IT, Security, Vulnerabilities at 12:05 am by Tyler Reguly

Microsoft has published an advisory on remote code executing via a vulnerability in RPC for Windows DNS Server. There are no details, however Microsoft is saying that it is a limited attack. This vulnerability has been assigned CVE-2007-1748. Successful exploitation would allow code to be executed under the context LOCAL SYSTEM and anonymous exploitation is possible against Windows 2000 Server and Windows 2003 Server.

Permalink

.:Computer Defense:.

04.13.07

Remote Code Execution in RPC on Windows DNS Server

Pages

Feedburner

Archives

Categories

Search

Meta