MS06-025: Vulnerability in Routing and Remote Access Could Allow Remote Code Execution (911280) (uncredentialed check)

This script is Copyright (C) 2006-2017 Tenable Network Security, Inc.


Synopsis :

It is possible to execute code on the remote host.

Description :

The remote version of Windows contains a version of RRAS (Routing and
Remote Access Service) that is affected by several memory corruption
vulnerabilities.

An attacker may exploit these flaws to execute code on the remote
service.

See also :

http://technet.microsoft.com/en-us/security/bulletin/ms06-025

Solution :

Microsoft has released a set of patches for Windows 2000, XP and 2003.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.2
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 21696 ()

Bugtraq ID: 18325
18358

CVE ID: CVE-2006-2370
CVE-2006-2371

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now