Reported November 28, 2004, by Immunity
VERSIONS AFFECTED
· Microsoft WINS |
DESCRIPTION
A vulnerability exists in Microsoft WINS that could result in the remote execution
of arbitrary code on the vulnerable system. WINS replication is done on TCP
port 42 using a Microsoft proprietary protocol.
VENDOR RESPONSE
Microsoft, has released "How to help protect against a WINS security
issue," http://support.microsoft.com/kbid?=890710, to address this
vulnerability.
CREDIT
Discovered by Nicolas Waisman.