Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Windows 2000 License Logging Server buffer overflow
Published:11.11.2009
Source:
SecurityVulns ID:10391
Type:remote
Threat Level:
6/10
Description:Buffer overflow on RPC call parsing.
Affected:MICROSOFT : Windows 2000 Server
CVE:CVE-2009-2523 (The License Logging Server (llssrv.exe) in Microsoft Windows 2000 SP4 allows remote attackers to execute arbitrary code via an RPC message containing a string without a null terminator, which triggers a heap-based buffer overflow in the LlsrLicenseRequestW method, aka "License Logging Server Heap Overflow Vulnerability.")
Original documentdocumentDVLabs, TPTI-09-07: Microsoft Windows License Logging Service Heap Corruption Vulnerability (11.11.2009)
 documentMICROSOFT, Microsoft Security Bulletin MS09-064 - Critical Vulnerability in License Logging Server Could Allow Remote Code Execution (974783) (11.11.2009)
Files:Microsoft Security Bulletin MS09-064 - Critical Vulnerability in License Logging Server Could Allow Remote Code Execution (974783)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod