CVE Number | Vulnerability | Product | Severity | Date |
---|---|---|---|---|
MS14-047 | Vulnerability in LRPC Could Allow Security Feature Bypass (2978668) | Windows 7 | Important | 13-08-2014 |
Technical Information
Brief overview of the risk:
The vulnerability could allow security feature bypass if an attacker uses the vulnerability in conjunction with another vulnerability, such as a remote code execution vulnerability, that takes advantage of the ASLR bypass to run arbitrary code.
Detailed Information on the risk:
A security feature bypass vulnerability exists in Microsoft Remote Procedure Call (LRPC). The problem is that an LRPC server may leak the message it receives from the client if the message is of a specific type and has a data view attached (which is not expected for messages of the type). RPC considers this an error and returns, but does not free the message. This allows the client to fill up the address space of the server with such messages.
Further information on this exploit is available at : MS14-047
Affected Software
Windows 7 for 32-bit Systems Service Pack 1Windows 7 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
Windows 8 for 32-bit Systems
Windows 8 for x64-based Systems
Windows 8.1 for 32-bit Systems
Windows 8.1 for x64-based Systems
Windows Server 2012 and Windows Server 2012 R2
Windows Server 2012 R2
Windows RT and Windows RT 8.1
Windows RT 8.1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2 (Server Core installation)