New Search

WINS Memory Overwrite Vulnerability

oval:org.mitre.oval:def:5582

The WINS service on Microsoft Windows 2000 SP4 and Server 2003 SP1 and SP2 does not properly validate data structures in WINS network packets which allows local users to gain privileges via a crafted packet aka "Memory Overwrite Vulnerability."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
  • Microsoft Windows Server 2003
Class:
vulnerability
Reference(s):
  • CVE-2008-1451
Product(s):