Microsoft Windows RDP request denial of service

windows-rdp-dos (21407)

Medium Risk

Description:

Microsoft Windows is vulnerable to a denial of service attack, caused by a buffer overflow in the process used to validate data by the Remote Desktop Protocol. A remote attacker could send a specially-crafted message to cause the system to stop responding, resulting in a denial of service.

Platforms Affected:

• Microsoft, Windows 2000 SP4 Server
• Microsoft, Windows 2003 Server x64
• Microsoft, Windows 2003 Server SP1
• Microsoft, Windows 2003 Server
• Microsoft, Windows 2003 Server SP1 Itanium
• Microsoft, Windows 2003 Server Itanium
• Microsoft, Windows XP Professional x64
• Microsoft, Windows XP SP1
• Microsoft, Windows XP SP2

Remedy:

Apply the appropriate patch for your system, as listed in the Microsoft Security Bulletin MS05-041. See References.

As a workaround, follow the instructions, as listed in Microsoft Security Advisory (904797). See References.

Consequences:

Denial of Service

References:

• Microsoft Security Advisory (904797), Vulnerability in Remote Desktop Protocol (RDP) Could Lead to Denial of Service at http://www.microsoft.com/technet/security/advisory/904797.mspx.
• Microsoft Security Bulletin MS05-041, Vulnerability in Remote Desktop Protocol Could Allow Denial of Service (899591) at http://www.microsoft.com/technet/security/bulletin/MS05-041.mspx.
• BID-14259: Microsoft Windows Kernel Unspecified Remote Desktop Protocol Denial Of Service Vulnerability
• CVE-2005-1218: The Microsoft Windows kernel in Microsoft Windows 2000 Server, Windows XP, and Windows Server 2003 allows remote attackers to cause a denial of service (crash) via crafted Remote Desktop Protocol (RDP) requests.
• US-CERT VU#490628: Microsoft Windows Remote Desktop Protocol service input validation vulnerability

Reported:

Jul 16, 2005

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page