Microsoft Message Queuing Service Stack Buffer Overflow Vulnerability

Microsoft Message Queuing (MSMQ) is prone to a stack-based buffer-overflow vulnerability because the software fails to perform adequate boundary checks on user-supplied data.

An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges, facilitating the complete compromise of affected computers. Failed exploit attempts will result in a denial-of-service condition.

This issue is exploitable remotely on all Windows 2000 systems and locally on Windows XP, provided that the affected component is installed.


 

Privacy Statement
Copyright 2010, SecurityFocus