MS-RPC: Host Integration Server RPC Service Remote Code Execution
This signature detects attempts to exploit a known design vulnerability against Host Integration Server RPC Service. A successful attack can lead to arbitrary code execution.
Extended Description
Microsoft Windows is prone to a remote command-execution vulnerability in the SNA service through a remote procedure call (RPC). Successfully exploiting this issue would allow an attacker to execute arbitrary commands on an affected computer in the context of the affected service.
Affected Products
Microsoft host_integration_server_2006
Short Name
MS-RPC:MSRPC-HIGRCE
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
MS-RPC
Keywords
CVE-2008-3466 Code Execution Host Integration RPC Remote Server Service bid:31620
Release Date
10/14/2008
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3729
False Positive
Unknown
Vendors
Microsoft
CVSS Score
10.0