MS10-066: Vulnerability in Remote Procedure Call Could Allow Remote Code Execution (982802)
High Nessus Plugin ID 49224
SynopsisArbitrary code can be executed on the remote host through its RPC facility.
DescriptionThe RPC client implementation on the remote host has an unspecified memory corruption vulnerability. A specially crafted RPC response to a client-initiated RPC request can result in arbitrary code execution.
A malicious RPC server could exploit this to take complete control of the host.
SolutionMicrosoft has released a set of patches for Windows XP and 2003.