MS05-046: Vulnerability in the Client Service for NetWare Could Allow Remote Code Execution (899589) (uncredentialed check)
Critical Nessus Plugin ID 20006
SynopsisA flaw in the client service for NetWare may allow an attacker to execute arbitrary code on the remote host.
DescriptionThe remote host contains a version of the Client Service for NetWare that is vulnerable to a buffer overflow.
An attacker may exploit this flaw by connecting to the NetWare RPC service (possibly over IP) and triggering the overflow by sending a malformed RPC request.
SolutionMicrosoft has released a set of patches for Windows 2000, XP and 2003.