[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Remote Code Execution Vulnerabilities in WINS - MS09-039

ID: oval:org.secpod.oval:def:2290Date: (C)2011-09-09   (M)2022-10-10
Class: PATCHFamily: windows




The host is missing a critical security update according to Microsoft security bulletin, MS09-039. The update is required to fix remote code execution vulnerabilities. The flaws are present in the Windows Internet Name Service (WINS), which fails to handle specially crafted WINS replication packet. Successful exploitation allows an attacker to execute arbitrary code.

Platform:
Microsoft Windows 2000
Microsoft Windows Server 2003
Reference:
MS09-039
CVE-2009-1923
CVE-2009-1924
CVE    2
CVE-2009-1923
CVE-2009-1924
CPE    7
cpe:/o:microsoft:windows_2003_server:-:sp2
cpe:/o:microsoft:windows_2000::sp4
cpe:/o:microsoft:windows_2003_server:-:sp2:x64
cpe:/o:microsoft:windows_2003_server::sp2:itanium
...
XCCDF    3
xccdf_com.secpod_benchmark_microsoft-windows-2000
xccdf_com.secpod_benchmark_microsoft-windows-server-2003
xccdf_scaprepo.com_benchmark_microsoft-windows-server-2003

© SecPod Technologies