Detect The HTTP RPC Endpoint Mapper Network Vulnerability

Summary

This detects the http-rpc-epmap service by connecting to the port 593 and processing the buffer received. This endpoint mapper provides CIS (COM+ Internet Services) parameters like port 135 (epmap) for RPC.

Solution

Deny incoming traffic from the Internet to TCP port 593 as it may become a security threat in the future, if a vulnerability is discovered. For more information about CIS: http://msdn.microsoft.com/library/en-us/dndcom/html/cis.asp

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Microsoft .NET Framework Security Bypass Vulnerability
Microsoft Windows Unauthorized Digital Certificates Spoofing Vulnerability (2718704)
Fraudulent Digital Certificates Spoofing Vulnerability (2524375)
Mozilla/Firefox default installation file permission flaw
MS Windows HID Functionality(Over USB) Code Execution Vulnerability

Detect the HTTP RPC endpoint mapper

Take action and discover your vulnerabilities