Microsoft Windows Netlogon Service Denial Of Service Vulnerability (2207559) Network Vulnerability

Summary

This host is missing a critical security update according to Microsoft Bulletin MS10-101.

Impact

Successful exploitation will allows attackers to cause a denial of service. Impact Level: System/Application

Solution

Run Windows Update and update the listed hotfixes or download and update mentioned hotfixes in the advisory from the below link, http://www.microsoft.com/technet/security/Bulletin/MS10-101.mspx

Insight

The issue is caused by an error in the Netlogon RPC Service when processing user-supplied data, which could allow attackers to crash an affected server that is configured as a domain controller.

Affected

Windows Server 2003 Service Pack 2 and prior. Windows Server 2008 Service Pack 2 and prior.

References

http://support.microsoft.com/kb/2305420
http://www.microsoft.com/technet/security/bulletin/MS10-101.mspx

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2742
CVSS Base Score: 5.4
AV:N/AC:H/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Microsoft Windows Kernel Denial of Service Vulnerability (2556532)
Microsoft Windows SAMR Protocol Security Bypass Vulnerability (2934418)
Microsoft Client/Server Run-time Subsystem Privilege Elevation Vulnerability (978037)
Microsoft Visual Studio Privilege Elevation Vulnerability (2651019)
Microsoft Remote Desktop Tampering Vulnerability (2969259)

Microsoft Windows Netlogon Service Denial of Service Vulnerability (2207559)

Take action and discover your vulnerabilities