Microsoft Windows TCP/IP IGMP MLD Remote Buffer Overflow Vulnerability

Microsoft Windows is prone to a remote buffer-overflow vulnerability because it fails to adequately handle specially crafted TCP/IP traffic.

Attackers can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successful exploits will completely compromise affected computers.

NOTE: A server is vulnerable if an application or a service on the server uses IP multicast. By default, no services use multicast on Microsoft Windows Server 2003. However, the default installations of Microsoft Windows Small Business Server 2003 and Microsoft Windows Home Server are affected by this vulnerability because IGMP is active by default.


Privacy Statement
Copyright 2010, SecurityFocus