Links

Sunday, September 5, 2010

Common Vulnerabilities and Exposures CVE-2006-2370 functions

Vulnerable Systems:
* Microsoft Windows 2000 Service Pack 4
* Microsoft Windows XP Service Pack 1 and Microsoft Windows XP Service Pack 2 - 
* Microsoft Windows XP Professional x64 Edition -
* Microsoft Windows Server 2003 and Microsoft Windows Server 2003 Service Pack 1 -
* Microsoft Windows Server 2003 for Itanium-based Systems and Microsoft Windows Server 2003 with SP1 for Itanium-based Systems -
* Microsoft Windows Server 2003 x64 Edition
RRAS Memory Corruption Vulnerability - CVE-2006-2370:
There is a remote code execution vulnerability in the Routing and Remote Access Service that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system.

What might an attacker use the vulnerability to do?
An attacker who successfully exploited this vulnerability could take complete control of the affected system.

Who could exploit the vulnerability?
On Windows 2000 Service Pack 4 and Windows XP Service Pack 1, any anonymous user who could deliver a specially crafted message to the affected system could try to exploit this vulnerability. In order to exploit the vulnerability on Windows XP Service Pack 2 and Windows Server 2003, an attacker must have valid login credentials to a target system.

How could an attacker exploit the vulnerability?
An attacker could also access the affected component through another vector. For example, an attacker could log on to the system interactively or by using another program that passes parameters to the vulnerable component either locally or remotely.

What systems are primarily at risk from the vulnerability?
Microsoft Windows 2000, Windows XP and Windows Server 2003 are primarily at risk from this vulnerability. Systems that use Internet Connection Sharing are also at risk as RRAS must be enabled for ICS functionality.

Are Windows 98, Windows 98 Second Edition or Windows Millennium Edition critically affected by this vulnerability?
No. Windows 98, Windows 98 Second Edition, and Windows Millennium Edition do not contain the affected component.

Could the vulnerability be exploited over the Internet?
An attacker could try to exploit this vulnerability over the Internet. Firewall best practices and standard default firewall configurations can help protect against attacks that originate from the Internet. Microsoft has provided information about how you can help protect your PC.

No comments:

Post a Comment

Search This Blog