Features
-
License:
Free
-
Editor's Rating:
Not rated
- Average User Rating:
-
Downloads:
98
- Operating Systems:
Windows 2000
- Additional Requirements:
Windows 2000/2003 Server
- Limitations:
No limitations
- Date Added:
September 13, 2007
Publisher's description of ISA Server 2000 - Vulnerability in H.323 Filter Can Cause Remote Code Execution (816458)
From Microsoft:A critical security vulnerability exists in the H.323 filter for Microsoft ISA Server 2000 that could allow an attacker to overflow a buffer on the Microsoft Firewall Service in Microsoft ISA Server 2000. The vulnerability results because the H.323 filter for the Microsoft Firewall Service does not perform proper boundary checks on specially formatted H.323 packets.
An attacker who successfully exploited this vulnerably could attempt to run code of their choosing in the security context of the Microsoft Firewall Service, giving the attacker complete control over the system. ISA Servers running in cache mode are not vulnerable because the Microsoft Firewall Service is disabled by default. However, since the H.323 filter is enabled by default on systems installed in Integrated or Firewall mode, installing this security update is highly recommended. This version is the first release on CNET Download.com.
- See more CNET content tagged:
- H.323,
- Microsoft Corp.,
- Microsoft ISA Server,
- Microsoft ISA Server 2000,
- attacker
More popular Corporate Security Software downloads
- 532 downloads 1. McAfee Total Protection for Small Business
- 368 downloads 2. Activity Monitor
- 314 downloads 3. Wireshark
- 299 downloads 4. Trend Micro OfficeScan Managed Antivirus
- 292 downloads 5. Ping Tester Pro
- See all Corporate Security Software downloads
User reviews
Write your own review Be the first one to review ISA Server 2000 - Vulnerability in H.323 Filter Can Cause Remote Code Execution (816458) 3 and share your experience with the CNET community!
Submit your review
You must be 13 years of age or older to submit personal information to CNET Networks. In compliance with the Children's Online Privacy Protection Act of 1998, CNET Networks does not accept name and e-mail address information from users who are under 13 years of age.
All submitted ratings and written comments become the sole property of CNET Networks, Inc. (CNET) and may be used at CNET Networks' sole discretion. Ratings and written comments are generally posted within two to four business days in batch groups, not in real time. However, CNET Networks reserves the right to remove or refuse to post any submission for any reason. You acknowledge that you, not CNET Networks, are responsible for the contents of your submission.
CNET Networks is not responsible for the content of the publisher's descriptions or user reviews on this site. We encourage you to determine whether this product or your intended use is legal. We do not encourage or condone the use of any software in violation of applicable laws. CNET Download.com does not sell, resell, or license any of the products listed on the site. We cannot be held liable for issues that arise from the download or use of these products.

