NVD Vulnerability Detail

CVE-2007-1748

Summary	Stack-based buffer overflow in the RPC interface in the Domain Name System (DNS) Server Service in Microsoft Windows 2000 Server SP 4, Server 2003 SP 1, and Server 2003 SP 2 allows remote attackers to execute arbitrary code via a long zone name containing character constants represented by escape sequences.
Summary	El desbordamiento de búfer en la región stack de la memoria, en la interfaz RPC en el Domain Name System (DNS) Server Service en Microsoft Windows versiones 2000 Server SP 4, Server 2003 SP 1 y Server 2003 SP 2, permite a los atacantes remotos ejecutar código arbitrario a través de un nombre de zona larga que contiene caracteres constantes representadas por secuencias de escape.
Publication Date	April 14, 2007, 3:19 a.m.
Registration Date	Jan. 29, 2021, 2:09 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : HIGH
Score	10.0
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp1::x64:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp2::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2::x64:::::

Related information, measures and tools

No	URL	refsource
1	http://blogs.technet.com/msrc/archive/2007/04/12/microsoft-security-advisory-935964-posted.aspx	secure@microsoft.com
2	http://metasploit.com/svn/framework3/trunk/modules/exploits/windows/dcerpc/msdns_zonename.rb	secure@microsoft.com
3	http://secunia.com/advisories/24871	secure@microsoft.com
4	http://www.kb.cert.org/vuls/id/555920	secure@microsoft.com
5	http://www.microsoft.com/technet/security/advisory/935964.mspx	secure@microsoft.com
6	http://www.securityfocus.com/archive/1/465863/100/100/threaded	secure@microsoft.com
7	http://www.securityfocus.com/archive/1/468871/100/200/threaded	secure@microsoft.com
8	http://www.securityfocus.com/bid/23470	secure@microsoft.com
9	http://www.securitytracker.com/id?1017910	secure@microsoft.com
10	http://www.us-cert.gov/cas/techalerts/TA07-103A.html	secure@microsoft.com
11	http://www.us-cert.gov/cas/techalerts/TA07-128A.html	secure@microsoft.com
12	http://www.vupen.com/english/advisories/2007/1366	secure@microsoft.com
13	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-029	secure@microsoft.com
14	https://exchange.xforce.ibmcloud.com/vulnerabilities/33629	secure@microsoft.com
15	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1228	secure@microsoft.com
16	http://blogs.technet.com/msrc/archive/2007/04/12/microsoft-security-advisory-935964-posted.aspx	af854a3a-2127-422b-91ae-364da2661108
17	http://metasploit.com/svn/framework3/trunk/modules/exploits/windows/dcerpc/msdns_zonename.rb	af854a3a-2127-422b-91ae-364da2661108
18	http://secunia.com/advisories/24871	af854a3a-2127-422b-91ae-364da2661108
19	http://www.kb.cert.org/vuls/id/555920	af854a3a-2127-422b-91ae-364da2661108
20	http://www.microsoft.com/technet/security/advisory/935964.mspx	af854a3a-2127-422b-91ae-364da2661108
21	http://www.securityfocus.com/archive/1/465863/100/100/threaded	af854a3a-2127-422b-91ae-364da2661108
22	http://www.securityfocus.com/archive/1/468871/100/200/threaded	af854a3a-2127-422b-91ae-364da2661108
23	http://www.securityfocus.com/bid/23470	af854a3a-2127-422b-91ae-364da2661108
24	http://www.securitytracker.com/id?1017910	af854a3a-2127-422b-91ae-364da2661108
25	http://www.us-cert.gov/cas/techalerts/TA07-103A.html	af854a3a-2127-422b-91ae-364da2661108
26	http://www.us-cert.gov/cas/techalerts/TA07-128A.html	af854a3a-2127-422b-91ae-364da2661108
27	http://www.vupen.com/english/advisories/2007/1366	af854a3a-2127-422b-91ae-364da2661108
28	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-029	af854a3a-2127-422b-91ae-364da2661108
29	https://exchange.xforce.ibmcloud.com/vulnerabilities/33629	af854a3a-2127-422b-91ae-364da2661108
30	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1228	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000::sp4::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp1::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp1::x64:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2:::::::*
cpe:2.3:o:microsoft:windows_2003_server:sp2::itanium:::::
cpe:2.3:o:microsoft:windows_2003_server:sp2::x64:::::