Windows NT Remote Access Service Phonebook Vulnerability Patch

Windows NT Remote Access Service Phonebook Vulnerability Patch

Average User Rating:
Be the first to rate this product!

Quick Specs

Version:
MS02-029
File Size:
592KB
Date Added:
June 28, 2002
Price:
Free
Operating Systems:
Windows/NT
Total Downloads:
1,061
Downloads Last Week:
1
Additional Requirements:
Windows NT 4.0

Editors' Note: The Remote Access Service (RAS) provides dial-up connections between computers and networks over phone lines. RAS is delivered as a native system service in Windows NT 4.0, Windows 2000, and Windows XP, and also is included in a separately downloadable Routing and Remote Access Server (RRAS) for Windows NT 4.0. All of these implementations include a RAS phonebook, which is used to store information about telephone numbers, security, and network settings used to dial-up remote systems.

A flaw exists in the RAS phonebook implementation: a phonebook value is not properly checked, and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes: causing a system failure, or running code on the system with LocalSystem privileges. If an attacker were able to log onto an affected server and modify a phonebook entry using specially malformed data, then made a connection using the modified phonebook entry, the specially malformed data could be run as code by the system.

Publisher's Description

More Products to Consider

All User Reviews

Add Your Review

Quickly sign in with: or Login or create an account to post a review.
You are logged in as . Please submit your review for Windows NT Remote Access Service Phonebook Vulnerability Patch
Add Your Review

The posting of advertisements, profanity, or personal attacks is prohibited.
Click here to review our site terms of use.

Update your review

Since you've already submitted a review for this product, this submission will be added as an update to your original review.
Submit

The posting of advertisements, profanity, or personal attacks is prohibited.
Click here to review our site terms of use.

Close[x]

Submit a problem report for Windows NT Remote Access Service Phonebook Vulnerability Patch

Please describe the problem you have with this software. This information will be sent to our editors for review.

Problem:

The Download.com Installer isn't working as expected

The download link does not work

The software has a newer version

The product contains malicious software

Other

Description:

Please select a feedback type.

Please enter a description.

Submit Problem Report

Close[x]

Problem Report submitted

Thank you for submitting a problem report! The Download team is committed to providing you with accurate software information.

OK