Rapid7 VulnDB

MS00-087: Terminal Server Login Buffer Overflow Vulnerability

Back to Search

MS00-087: Terminal Server Login Buffer Overflow Vulnerability

Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
11/08/2000
Created
07/25/2018
Added
11/30/2004
Modified
07/30/2012

Description

Your system may require one or more security patches or hotfixes from Microsoft.

An unchecked buffer in the Terminal Server login prompt could allow a malicious user to cause the Terminal Server to execute arbitrary code. The ability to execute arbitrary code would enable the malicious user to add, change, or delete data, run code already on the server, or upload new code to the server and run it. The malicious user would not need to successfully login to the Terminal Server in order to initiate this attack. This vulnerability could be exploited remotely if connection requests are not filtered. By default, Terminal Server listens on tcp port 3389. This port should be blocked at the firewall and/or router if Terminal Server access from the Internet is not require

Solution(s)

  • install-microsoft-patch-8ac17ff0892a19e530bef4d5894c6892

References

  • install-microsoft-patch-8ac17ff0892a19e530bef4d5894c6892

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;