Title: Microsoft Windows XP TSShutdn.exe Remote Denial of Service Vulnerability
Severity: HIGH
Description:
Microsoft Windows XP is prone to a remote denial of service vulnerability. This issue can allow a remote unauthorized user to shutdown an affected computer.
This issue can arise if a remote attacker uses the TSShutdn.exe command in combination with the '/SERVER' paramter to specify the IP address of a remote computer. The '/REBOOT' parameter can be used to restart a computer.
Reportedly, Remote Desktop does not verify shutdown privileges and allows the attacker to shutdown the computer.
It should be noted that the exploitation of this vulnerability may require the attacker to be part of the same domain. This BID will be updated when more information is available.
Microsoft Windows XP Service Pack 1 is affected by this issue.
Affected Products:
- Microsoft Windows XP Home SP1
- Microsoft Windows XP Media Center Edition SP1
- Microsoft Windows XP Professional SP1
- Microsoft Windows XP Tablet PC Edition SP1
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
