Title: Microsoft ISA Server H.323 Memory Leak Denial of Service Vulnerability
Severity: HIGH
Description:
The H.323 Gatekeeper Service in Microsoft ISA Server supports the transmission of voice-over-IP data through the firewall.
A certain type of malformed H.323 data can trigger a memory leak in the H.323 Gatekeeper Service. When the specially malformed data is recieved by the server, memory that is allocated is not freed. It is possible for an attacker to deplete memory by continuously sending this malformed data.
After enough malformed data is received, the ISA server could experience such a large degradation of performance that all traffic across the firewall would virtually cease.
Normal service could be restored by restarting the H.323 Gatekeeper Service.
Affected Products:
- Microsoft ISA Server 2000 0.0.0
- Microsoft Small Business Server 2000 0.0.0
- Microsoft Small Business Server 2003 Premium Edition 0.0.0
References:
- Microsoft: Microsoft Security Bulletin MS01-045
- Microsoft: Microsoft Technet Security
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
