<< Back
CVE Number Vulnerability Product Severity Date
MS11-082 Vulnerabilities in Host Integration Server Could Allow Denial of Service (2607670) Microsoft Host Important 12-10-2011

Technical Information

Brief overview of the risk:
This security update resolves two publicly disclosed vulnerabilities in Host Integration Server. The vulnerabilities could allow denial of service if a remote attacker sends specially crafted network packets to a Host Integration Server listening on UDP port 1478 or TCP ports 1477 and 1478.
Detailed Information on the risk:

An unauthenticated denial of service vulnerability exists in the way that Host Integration Server handles some UDP and TCP network traffic. The vulnerability could allow a remote user to cause snabase.exe, snaserver.exe, snalink.exe, or mngagent.exe to stop responding to new requests.

Further information on this exploit is available at : MS11-082

Affected Software

Microsoft Host Integration Server 2004 Service Pack 1
Microsoft Host Integration Server 2006 Service Pack 1
Microsoft Host Integration Server 2009
Microsoft Host Integration Server 2010