|MS11-082||Vulnerabilities in Host Integration Server Could Allow Denial of Service (2607670)||Microsoft Host||Important||12-10-2011|
Brief overview of the risk:
This security update resolves two publicly disclosed vulnerabilities in Host Integration Server. The vulnerabilities could allow denial of service if a remote attacker sends specially crafted network packets to a Host Integration Server listening on UDP port 1478 or TCP ports 1477 and 1478.
Detailed Information on the risk:
An unauthenticated denial of service vulnerability exists in the way that Host Integration Server handles some UDP and TCP network traffic. The vulnerability could allow a remote user to cause snabase.exe, snaserver.exe, snalink.exe, or mngagent.exe to stop responding to new requests.
Further information on this exploit is available at : MS11-082
Affected SoftwareMicrosoft Host Integration Server 2004 Service Pack 1
Microsoft Host Integration Server 2006 Service Pack 1
Microsoft Host Integration Server 2009
Microsoft Host Integration Server 2010