Microsoft Host Integration Server SNA RPC authentication bypass

Added: 10/15/2008
CVE: CVE-2008-3466
BID: 31620
OSVDB: 49068

Background

Microsoft Host Integration Server is an enabling technology which allows integration of applications and data with new Windows solutions.

Problem

A vulnerability in Microsoft Host Integration Server allows remote unauthenticated users to bypass authentication within the SNA RPC service, leading to command execution.

Resolution

Apply the update referenced in Microsoft Security Bulletin 08-059.

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=745

Limitations

Exploit works on Microsoft Host Integration Server 2006 on Windows 2000.

This exploit requires the ability to bind to port 69/UDP on the SAINTexploit host.

Platforms

Windows

Back to exploit index