Showing 1 - 5 of 5

CVE-2007-1748

Status Candidate

Overview

Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.

Related Files

Microsoft DNS RPC Service extractQuotedChar() Overflow (SMB): Posted Jul 26, 2010; Authored by H D Moore | Site metasploit.com; This Metasploit module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This Metasploit module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2. This Metasploit module exploits the RPC service using the \\\\DNSSERVER pipe available via SMB. This pipe requires a valid user account to access, so the SMBUSER and SMBPASS options must be specified.; tags | exploit, overflow; systems | windows; advisories | CVE-2007-1748; SHA-256 | e9b0527ebdd2cf04d5a8b77d31a915ef02a016adafac8d7e3310e2c2e5502c34; Download | Favorite | View

Microsoft DNS RPC Service extractQuotedChar() Overflow (TCP): Posted Jul 26, 2010; Authored by H D Moore | Site metasploit.com; This Metasploit module exploits a stack buffer overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name parameter is supplied that contains escaped octal strings. This Metasploit module is capable of bypassing NX/DEP protection on Windows 2003 SP1/SP2.; tags | exploit, overflow; systems | windows; advisories | CVE-2007-1748; SHA-256 | 9b7e6f209365505dfcd113a948db7bfb7bbb370bb024a1d2ca6fb2feabc1c1cf; Download | Favorite | View

msdns_zonename.rb.txt: Posted Apr 17, 2007; Authored by H D Moore | Site metasploit.com; This Metasploit module exploits a stack overflow in the RPC interface of the Microsoft DNS service. The vulnerability is triggered when a long zone name is supplied that contains escaped characters. This exploit will NOT work on Windows 2003 SP1 or SP2 if hardware DEP is enabled.; tags | exploit, overflow; systems | windows; advisories | CVE-2007-1748; SHA-256 | 9e489d03059ad614ec6b6212926d5c4b2852414c9f8a30464d6ccd7e43d0f9ca; Download | Favorite | View

Microsoft_Dns_Server_Exploit.zip: Posted Apr 17, 2007; Authored by Andres Tarasco, Mario Ballano | Site 514.es; Microsoft DNS Server remote code execution exploit and analysis. This exploit works against TCP port 445. Tested against Windows 2000 server SP4 and Windows 2003 SP2. Binds a shell to TCP port 4444.; tags | exploit, remote, shell, tcp, code execution; systems | windows; advisories | CVE-2007-1748; SHA-256 | da933bee902a9d0ad317df3b6dae1ddd4b4844a53889479f6ff633eed2376da5; Download | Favorite | View

mswin-dns-overflow.txt: Posted Apr 17, 2007; Authored by devcode; Microsoft Windows DNS DnssrvQuery() stack overflow exploit. Binds a shell to TCP port 4444.; tags | exploit, overflow, shell, tcp; systems | windows; advisories | CVE-2007-1748; SHA-256 | 9a0d4f0a88750a0b158b64ad37458f8acd0311b1d32be48d548093923aee9e46; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 232 files
Ubuntu 59 files
Debian 27 files
Valentin Lobstein 11 files
LiquidWorm 11 files
nu11secur1ty 9 files
Apple 6 files
Milad Karimi 5 files
Google Security Research 5 files
Yevhenii Butenko 4 files

File Archives

Systems

AIX (429)
Apple (2,078)
BSD (376)
CentOS (58)
Cisco (1,927)
Debian (7,022)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,467)
HPUX (880)
iOS (373)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (49,318)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (488)
RedHat (15,567)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,456)
UNIX (9,394)
UnixWare (187)
Windows (6,650)
Other

CVE-2007-1748

Overview

Related Files

File Archive:

April 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems