CVE-2002-0366

CVE-2002-0366

EPSS 2.8%

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://online.securityfocus.com/archive/1/276776 http://online.securityfocus.com/archive/1/278145 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-029 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A61 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A63 http://www.nextgenss.com/vna/ms-ras.txt http://www.securityfocus.com/bid/4852