Download
| Alert*
|
oval:org.secpod.oval:def:3184
The host is missing a critical security update according to Microsoft security bulletin, MS08-059. The update is required to fix remote code execution vulnerability. A flaw is present in Microsoft Host Integration Server, which fails to handle a specially crafted Remote Procedure Call (RPC) request. ... oval:org.mitre.oval:def:6075 Microsoft Host Integration Server (HIS) 2000, 2004, and 2006 does not limit RPC access to administrative functions, which allows remote attackers to bypass authentication and execute arbitrary programs via a crafted SNA RPC message using opcode 1 or 6 to call the CreateProcess function, aka "HIS Com ... |
