Vulnerability: Unchecked buffer in Windows Remote Access Service Phonebook

A flaw exists in the RAS phonebook implementation (a nativesystem service in Windows NT 4.0, Windows 2000 and Windows XP, and also is included in a separately downloadable Routing and Remote Access Server for Windows NT 4.0).

"A phonebook value is not properly checked, and is susceptible to a buffer overrun. The overrun could be exploited for either of two purposes: causing a system failure, or running code on the system with LocalSystem privileges."

For more information click here

Join the newsletter!

Error: Please check your email address.

More about Access ServerMicrosoft

Show Comments