MS08-059 ? Critical: Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) - Version:1.1 |
|
| BugsAlert Home > MS08-059 ? Critical: Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) - Version:1.1 | |
|
Severity Rating: Critical - Revision Note: V1.1 (October 15, 2008): Added reference to Microsoft Knowledge Base Article 956695 to Known Issues in the Executive Summary section. Also, corrected the title of the HIS Command Execution Vulnerability (CVE- 2008-3466) in the Acknowledgments section.Summary: This security update resolves a privately reported vulnerability in Microsoft Host Integration Server. The vulnerability could allow remote code execution if an attacker sent a specially crafted Remote Procedure Call (RPC) request to an affected system. Customers who follow best practices and configure the SNA RPC service account to have fewer user rights on the system could be less impacted than customers who configure the SNA RPC service account to have administrative user rights. Original Source: http://www.microsoft.com/technet/security/bulletin/MS08-059.mspx?pubDate=2008-10-15 Learn more about MS08-059 ? Critical: Vulnerability in Host Integration Server RPC Service Could Allow Remote Code Execution (956695) - Version:1.1 |
|
|
Tags: ms08-059 critical vulnerability host integration server rpc service remote code execution 956695 version 1.1 |
|
Related Items |
|
|
FrSIRT - Fedora Security Update Fixes Nagios Authorization Bypass Issue
|
|
|
FrSIRT - Debian Security Update Fixes SDL_image Buffer Overflow Vulnerabilities
|
|
|
FrSIRT - rPath Linux Security Update Fixes Bzip2 Archive Handling Vulnerability
|
|
|
CVE-2008-3181 (content_now)
|
|
|
CVE-2008-1953 (site_designer)
|
|
|
phpMyAdmin Database Name SQL Injection and Cross Site Scripting
|
|
|
CVE-2008-2059 (Adaptive Security Appliance, pix_security_appliance)
|
|
