| CVE Number | Vulnerability | Product | Severity | Date |
|---|---|---|---|---|
| MS11-082 | Vulnerabilities in Host Integration Server Could Allow Denial of Service (2607670) | Microsoft Host | Important | 12-10-2011 |
Technical Information
Brief overview of the risk:
This security update resolves two publicly disclosed vulnerabilities in Host Integration Server. The vulnerabilities could allow denial of service if a remote attacker sends specially crafted network packets to a Host Integration Server listening on UDP port 1478 or TCP ports 1477 and 1478.
Detailed Information on the risk:
An unauthenticated denial of service vulnerability exists in the way that Host Integration Server handles some UDP and TCP network traffic. The vulnerability could allow a remote user to cause snabase.exe, snaserver.exe, snalink.exe, or mngagent.exe to stop responding to new requests.
Further information on this exploit is available at : MS11-082
Affected Software
Microsoft Host Integration Server 2004 Service Pack 1Microsoft Host Integration Server 2006 Service Pack 1
Microsoft Host Integration Server 2009
Microsoft Host Integration Server 2010