Definition

WINS Heap Overflow Vulnerability

oval:org.mitre.oval:def:6410

Heap-based buffer overflow in the Windows Internet Name Service (WINS) component for Microsoft Windows 2000 SP4 and Server 2003 SP2 allows remote attackers to execute arbitrary code via a crafted WINS replication packet that triggers an incorrect buffer-length calculation aka "WINS Heap Overflow Vulnerability."

Family:

windows

Status:

ACCEPTED

Platform(s):

Microsoft Windows Server 2003
Microsoft Windows 2000

Class:

vulnerability

Reference(s):

CVE-2009-1923

Product(s):