Search

Microsoft Windows WINS Vulnerability

Tuesday, 30 November 2004 by Michel Roth

A vulnerability in Microsoft Windows WINS has been reported. Successful exploitation allows execution of arbitrary code, however due to the nature of WINS remote exploitation is not likely.

Currently, there is no hotfix available but MS has provided a "work-around" (blocking WINS or removing it).

One would hope a hotfix will be made available trough Decembers updates together with an hotfix for another unpatched vulnerability for which exploits and viruses are in the wild.

Read the advisory about the WINS vulnerability here.

Related Items:

0-Day Microsoft Excel Unspecified Code Execution Vulnerability (19 June 2006)
Here are the extra Microsoft security updates for december 2004 (14 December 2004)
Warning: 0-Day Microsoft XMLHTTP ActiveX Control Code Execution Vulnerability (6 November 2006)
Unpatched Internet Explorer Vulnerability, Exploit Released (8 November 2004)
Microsoft Security Bulletin for December (2 December 2004)
Internet Explorer "object" Tag Memory Corruption Code Execution (26 April 2006)
VMware NAT Networking Buffer Overflow Vulnerability (21 December 2005)
Trend Micro Products AntiVirus Library Buffer Overflow (27 February 2005)
Warning: Microsoft Windows WMF Handling Arbitrary Code Execution - Exploit In the Wild (29 December 2005)
Citrix Metaframe XP Unspecified Buffer Overflow Vulnerability (23 December 2004)

Comments (0)

Show/Hide comment form toggle

toggle

Our Newsletter

Stay Updated

Stay Updated!

Latest downloads

Stresstesing Provision Networks Components With DeNamiK LoadGenDeNamiK LoadGen1.3Visionapp Remote Desktop managerDeNamik Service WrapperLogin Consultants TS Task ManagerDeNamiK sftImportSoftgrid Precache All Applications Script: CacheAllSFTAppsThincomputing.net Tools v1.02

Latest Blog items