Microsoft Windows Plug and Play Service Buffer Overflow
Gravité: : Critique
Identifiant(s) CVE: : CVE-2005-1983
Date du conseil: 21 juillet 2015
Description
cve: Stack-based buffer overflow in the Plug and Play (PnP) service for Microsoft Windows 2000 and Windows XP Service Pack 1 allows remote attackers to execute arbitrary code via a crafted packet, and local users to gain privileges via a malicious application, as exploited by the Zotob (aka Mytob) worm.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000343
Trend Micro Deep Security DPI Rule Name: 1000343 - Microsoft Windows Plug and Play Service Buffer Overflow
Affected software and version:
- Microsoft Windows 2000
- Microsoft Windows XP SP1