Signature Detail
Short Name |
MS-RPC:MSRPC-HIGRCE |
|---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
MS-RPC |
Keywords |
Host Integration Server RPC Service Remote Code Execution |
Release Date |
2008/10/14 |
Update Number |
1291 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
MS-RPC: Host Integration Server RPC Service Remote Code Execution
This signature detects attempts to exploit a known design vulnerability against Host Integration Server RPC Service. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Windows is prone to a remote command-execution vulnerability in the SNA service through a remote procedure call (RPC). Successfully exploiting this issue would allow an attacker to execute arbitrary commands on an affected computer in the context of the affected service.
Affected Products
- Microsoft Host Integration Server 2000 SP2
- Microsoft Host Integration Server 2000 Administrator Client
- Microsoft Host Integration Server 2004 SP1
- Microsoft Host Integration Server 2004
- Microsoft Host Integration Server 2006
References
- CVE: CVE-2008-3466