Published: 13/05/2011 Updated: 21/11/2024

WINS in Microsoft Windows Server 2003 SP2 and Server 2008 Gold, SP2, R2, and R2 SP1 does not properly handle socket send exceptions, which allows remote malicious users to execute arbitrary code or cause a denial of service (memory corruption) via crafted packets, related to unintended stack-frame values and buffer passing, aka "WINS Service Failed Response Vulnerability."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft windows server 2003
microsoft windows server 2008
microsoft windows server 2008 -
microsoft windows server 2008 r2

####################################################################### Luigi Auriemma Application: Microsoft WINS service wwwmicrosoftcom Versions: <= 5237904520 Platforms: Windows Bug: arbitrary memory corruption Exploitation: remote, versus server Date: found ...

CWE-20 https://nvd.nist.gov https://www.exploit-db.com/exploits/17830/https://www.first.org/epss https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12724 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-035 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12724

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2011-1248

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect