This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:INFO-LEAK:HTTP-SHARE-ENUM
|
Severity |
Info
|
Recommended |
No
|
Category |
HTTP
|
Keywords |
SMB Share Enumeration
|
Release Date |
2004/10/06
|
Update Number |
1213
|
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: SMB Share Enumeration
This signature detects attempts to enumerate SMB shares through HTTP.
Extended Description
It has been reported that the Microsoft Windows Locator service is affected by a remotely exploitable buffer overflow vulnerability. The condition is due to a memory copy of RPC arguments received from remote clients into a local buffer.
This vulnerability may be exploited by remote attackers to execute custom instructions on the target server. It is also possible to crash the service with a malicious request. It should be noted that, to exploit this vulnerability, no authentication is required. Additionally, the Locator service is enabled by default on all Windows 2000 and Windows NT Domain Controllers (DC).
Affected Products
- Microsoft windows_2000_advanced_server SP1
- Microsoft windows_2000_advanced_server SP2
- Microsoft windows_2000_advanced_server SP3
- Microsoft windows_2000_advanced_server
- Microsoft windows_2000_datacenter_server SP1
- Microsoft windows_2000_datacenter_server SP2
- Microsoft windows_2000_datacenter_server SP3
- Microsoft windows_2000_datacenter_server
- Microsoft windows_2000_professional SP1
- Microsoft windows_2000_professional SP2
- Microsoft windows_2000_professional SP3
- Microsoft windows_2000_professional
- Microsoft windows_2000_server SP1
- Microsoft windows_2000_server SP2
- Microsoft windows_2000_server SP3
- Microsoft windows_2000_server
- Microsoft windows_2000_server_japanese_edition
- Microsoft windows_2000_terminal_services SP1
- Microsoft windows_2000_terminal_services SP2
- Microsoft windows_2000_terminal_services SP3
- Microsoft windows_2000_terminal_services
- Microsoft windows_nt_enterprise_server 4.0
- Microsoft windows_nt_enterprise_server 4.0 SP1
- Microsoft windows_nt_enterprise_server 4.0 SP2
- Microsoft windows_nt_enterprise_server 4.0 SP3
- Microsoft windows_nt_enterprise_server 4.0 SP4
- Microsoft windows_nt_enterprise_server 4.0 SP5
- Microsoft windows_nt_enterprise_server 4.0 SP6
- Microsoft windows_nt_enterprise_server 4.0 SP6a
- Microsoft windows_nt_server 4.0
- Microsoft windows_nt_server 4.0 SP1
- Microsoft windows_nt_server 4.0 SP2
- Microsoft windows_nt_server 4.0 SP3
- Microsoft windows_nt_server 4.0 SP4
- Microsoft windows_nt_server 4.0 SP5
- Microsoft windows_nt_server 4.0 SP6
- Microsoft windows_nt_server 4.0 SP6a
- Microsoft windows_nt_terminal_server 4.0
- Microsoft windows_nt_terminal_server 4.0 SP1
- Microsoft windows_nt_terminal_server 4.0 SP2
- Microsoft windows_nt_terminal_server 4.0 SP3
- Microsoft windows_nt_terminal_server 4.0 SP4
- Microsoft windows_nt_terminal_server 4.0 SP5
- Microsoft windows_nt_terminal_server 4.0 SP6
- Microsoft windows_nt_terminal_server 4.0 SP6a
- Microsoft windows_nt_workstation 4.0
- Microsoft windows_nt_workstation 4.0 SP1
- Microsoft windows_nt_workstation 4.0 SP2
- Microsoft windows_nt_workstation 4.0 SP3
- Microsoft windows_nt_workstation 4.0 SP4
- Microsoft windows_nt_workstation 4.0 SP5
- Microsoft windows_nt_workstation 4.0 SP6
- Microsoft windows_nt_workstation 4.0 SP6a
- Microsoft windows_xp_64-bit_edition SP1
- Microsoft windows_xp_64-bit_edition
- Microsoft windows_xp_home SP1
- Microsoft windows_xp_home
- Microsoft windows_xp_professional SP1
- Microsoft windows_xp_professional
References