CVE-2007-3039high
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
Stack-based buffer overflow in the Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4, Windows 2000 Professional SP4, and Windows XP SP2 allows attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. NOTE: this is remotely exploitable on Windows 2000 Server.
References
http://secunia.com/advisories/28011
http://secunia.com/advisories/28051
http://www.securityfocus.com/archive/1/484891/100/0/threaded
http://www.securityfocus.com/archive/1/485268/100/0/threaded
http://www.securityfocus.com/bid/26797
http://www.securitytracker.com/id?1019077
http://www.us-cert.gov/cas/techalerts/TA07-345A.html
http://www.vupen.com/english/advisories/2007/4181
http://www.zerodayinitiative.com/advisories/ZDI-07-076.html
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-065
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4474
https://www.exploit-db.com/exploits/4745
Vulnerable Software
Configuration 1
AND
OR
cpe:2.3:o:microsoft:windows_2000:*:sp4:pro:*:*:*:*:*
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 29314 | MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) (uncredentialed check) | Nessus | Windows | critical |
| 29309 | MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) | Nessus | Windows : Microsoft Bulletins | critical |