CVE-2007-3039

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Stack-based buffer overflow in the Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4, Windows 2000 Professional SP4, and Windows XP SP2 allows attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. NOTE: this is remotely exploitable on Windows 2000 Server.

References

http://secunia.com/advisories/28011

http://secunia.com/advisories/28051

http://www.securityfocus.com/archive/1/484891/100/0/threaded

http://www.securityfocus.com/archive/1/485268/100/0/threaded

http://www.securityfocus.com/bid/26797

http://www.securitytracker.com/id?1019077

http://www.us-cert.gov/cas/techalerts/TA07-345A.html

http://www.vupen.com/english/advisories/2007/4181

http://www.zerodayinitiative.com/advisories/ZDI-07-076.html

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-065

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4474

https://www.exploit-db.com/exploits/4745

https://www.exploit-db.com/exploits/4760

https://www.exploit-db.com/exploits/4934

Details

Source: MITRE

Published: 2007-12-12

Updated: 2018-10-16

Type: CWE-119

Risk Information

CVSS v2

Base Score: 9

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 8

Severity: HIGH

Tenable Plugins

View all (2 total)

IDNameProductFamilySeverity
29314MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894) (uncredentialed check)NessusWindows
critical
29309MS07-065: Vulnerability in Message Queuing Could Allow Remote Code Execution (937894)NessusWindows : Microsoft Bulletins
critical