Scan & Fix 50 registry issues FREE CNET Editors' note: The Remote Access Service (RAS) provides dial-up connections between computers and networks over phone lines. RAS is delivered as a native system service in Windows NT 4.0, Windows 2000, and Windows XP, and also is included in a separately downloadable Routing and Remote Access Server (RRAS) for Windows NT 4.0. All of these implementations include a RAS phonebook, which is used to store information about telephone numbers, security, and network settings used to dial-up remote systems. A flaw exists in the RAS phonebook implementation: a phonebook value is not properly checked, and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes: causing a system failure, or running code on the system with LocalSystem privileges. If an attacker were able to log onto an affected server and modify a phonebook entry using specially malformed data, then made a connection using the modified phonebook entry, the specially malformed data could be run as code by the system.
Publisher's Description
From Microsoft:
The Remote Access Service (RAS) provides dial-up connections between computers and networks over phone lines. RAS is delivered as a native system service in Windows NT 4.0, Windows 2000, and Windows XP, and also is included in a separately downloadable Routing and Remote Access Server (RRAS) for Windows NT 4.0. All of these implementations include a RAS phonebook, which is used to store information about telephone numbers, security, and network settings used to dial-up remote systems.
A flaw exists in the RAS phonebook implementation: a phonebook value is not properly checked, and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes: causing a system failure, or running code on the system with LocalSystem privileges. If an attacker were able to log onto an affected server and modify a phonebook entry using specially malformed data, then made a connection using the modified phonebook entry, the specially malformed data could be run as code by the system.
More Products to Consider
-
Prevent malicious users from exploiting a buffer overrun vulner...DownloadInstalled
Smart Install -
Protect your PC against the latest viruses and spyware.DownloadInstalled
Smart Install -
Protect your computer from viruses and malicious programs.DownloadInstalled
Smart Install -
Detect and quickly remove malicious threats to your computer.DownloadInstalled
Smart Install -
Provide secure, anonymous, and private browsing on Wi-Fi hotspo...DownloadInstalled
Smart Install -
Search your hard disk and Registry for threats to your security...DownloadInstalled
Smart Install -
Detect and eliminate viruses, get free protection for home user...DownloadInstalled
Smart Install -
Download and exchange files safely, enjoy games and Web surfing...DownloadInstalled
Smart Install -
Find and secure personal information stored on your PC.DownloadInstalled
Smart Install -
Find and secure personal information stored on your PC.DownloadInstalled
Smart Install -
Record and view every keystroke typed on keyboard.DownloadInstalled
Smart Install -
Find and secure personal information stored on your PC.DownloadInstalled
Smart Install -
Secure your connection to public Wi-Fi networks with premium VP...DownloadInstalled
Smart Install -
Get the latest antivirus updates.DownloadInstalled
Smart Install -
Keep your business safe when e-mailing or going online.DownloadInstalled
Smart Install -
Update Norton virus definitions and antivirus products.DownloadInstalled
Smart Install -
Get updated virus pattern files.DownloadInstalled
Smart Install -
Protect your personal home computer from malware attacks.DownloadInstalled
Smart Install - Unchecked Buffer in Windows Redirector.Download
This download is served from an external site
closeNOTICE: This link will open a connection to a third-party site. CNET cannot ensure the security of software that is hosted on external sites.
Sponsored Products
Installed
Smart Install -
Protect local and remotely running applications from undesirabl...DownloadInstalled
Smart Install -
Perform multiple, network based, diskless OS installation over ...DownloadInstalled
Smart Install -
Detect and remove spyware, malware, rootkits, trojans, hijacker...DownloadInstalled
Smart Install -
Protect local and remotely running applications from undesirabl...DownloadInstalled
Smart Install -
Test the accessibility of WMI counters.DownloadInstalled
Smart Install
