MS03-039: Microsoft Windows RPC DCOM Interface epmapper Pipe Hijack Local Privilege Escalation (824146) (intrusive check)
High Nessus Plugin ID 11798
SynopsisThe remote Windows host has a denial of service vulnerability that may lead to privilege escalation.
DescriptionIt is possible to disable the remote RPC DOM interface by sending it a malformed request. The system will need to be rebooted to recover. A remote attacker could exploit this flaw to remotely disable RPC- related programs on this host.
If a denial of service attack is successful, a local attacker could escalate privileges by hijacking the epmapper pipe.
SolutionMicrosoft has released a set of patches for Windows NT, 2000, XP, and 2003.