Rapid7 Vulnerability & Exploit Database

Windows DCE-RPC Denial Of Service

Back to Search

Windows DCE-RPC Denial Of Service

Severity
5
CVSS
(AV:N/AC:H/Au:N/C:N/I:N/A:C)
Published
11/01/2004
Created
07/25/2018
Added
11/01/2004
Modified
07/13/2012

Description

The Windows DCE-RPC service that listens on TCP port 135 can be crashed if certain malformed packets are sent to it. This causes a system-wide denial of service because DCE-RPC is necessary to perform many local functions. In some cases, depending on the just-in-time debugger settings on the remote machine, this attack will simply cause an exception dialog box to be displayed on the remote machine rather than disabling the service completely. The service may continue to serve new requests in this case.

Solution(s)

  • apply-sp-windows_2000_service_pack_4

References

  • apply-sp-windows_2000_service_pack_4

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;