Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security NTBugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Alert: Microsoft Security Bulletin MS04-035 - Vulnerability in SMTP Coul

from [Russ Cooper] Network Security [Permanent Link]
Subject: Alert: Microsoft Security Bulletin MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution (885881)
Date: Tue, 12 Oct 2004 13:24:15 -0400 
Microsoft Security Bulletin MS04-035:
Vulnerability in SMTP Could Allow Remote Code Execution (885881)

Bulletin URL:
<http://www.microsoft.com/technet/security/bulletin/MS04-035.mspx>

Version Number: 1.0
Issued Date: Tuesday, October 12, 2004
Impact of Vulnerability: Remote Code Execution
Maximum Severity Rating: Critical
Patch(es) Replaced: None
Caveats: None

Tested Software:
Affected Software:
------------------
* Microsoft Windows XP 64-Bit Edition Version 2003
<http://tinyurl.com/6ru5u>
* Microsoft Windows Server 2003
<http://tinyurl.com/3w2r2>
* Microsoft Windows Server 2003 64-Bit Edition Microsoft Exchange Server 2003 
and Microsoft Exchange Server 2003 Service Pack 1 when installed on Microsoft 
Windows Server 2003 (uses the Windows 2003 SMTP component)
<http://tinyurl.com/6ru5u>
* Microsoft Exchange Server 2003 when installed on Microsoft Windows 2000 
Service Pack 3 or Microsoft Windows 2000 Service Pack 4
<http://tinyurl.com/5oej4>

Affected Components:
--------------------
* Microsoft Windows XP 64-Bit Edition Version 2003 SMTP component
* Microsoft Windows Server 2003 SMTP component
* Microsoft Windows Server 2003 64-Bit Edition SMTP component
* Microsoft Exchange Server 2003 Routing Engine component

Technical Description:
----------------------
* SMTP Vulnerability - CAN-2004-0840: A remote code execution vulnerability 
exists in the Windows Server 2003 SMTP component because of the way that it 
handles Domain Name System (DNS) lookups. An attacker could exploit the 
vulnerability by causing the server to process a particular DNS response that 
could potentially allow remote code execution. An attacker who successfully 
exploited this vulnerability could take complete control of an affected system. 
The vulnerability also exists in the Microsoft Exchange Server 2003 Routing 
Engine component when installed on Microsoft Windows 2000 Service Pack 3 or on 
Microsoft Windows 2000 Service Pack 4.

This email is sent to NTBugtraq automagically as a service to my subscribers. 
(v4.01.1664.40858)

Cheers,
Russ - Senior Scientist - TruSecure Corporation/NTBugtraq Editor

--
NTBugtraq Editor's Note:

Want to reply to the person who sent this message? This list is configured such 
that just hitting reply is going to result in the message coming to the list, 
not to the individual who sent the message. This was done to help reduce the 
number of Out of Office messages posters received. So if you want to send a 
reply just to the poster, you'll have to copy their email address out of the 
message and place it in your TO: field.
--
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Alert: Microsoft Security Bulletin MS04-035 - Vulnerability in SMTP Could Allow Remote Code Execution (885881), Russ Cooper <=
Previous by Date:  Alert: Microsoft Security Bulletin MS04-034 - Vulnerability in Compressed (zipped) Folders Could Allow Remote Code Execution (873376), Russ Cooper
Next by Date:  Alert: Microsoft Security Bulletin MS04-036 - Vulnerability in NNTP Could Allow Remote Code Execution (883935), Russ Cooper
Previous by Thread:  Alert: Microsoft Security Bulletin MS04-034 - Vulnerability in Compressed (zipped) Folders Could Allow Remote Code Execution (873376), Russ Cooper
Next by Thread:  Alert: Microsoft Security Bulletin MS04-036 - Vulnerability in NNTP Could Allow Remote Code Execution (883935), Russ Cooper
Indexes:  [Date] [Thread] [Top] [All Lists]