MS RPC Services Null Pointer Reference DoS Network Vulnerability

Summary

MS Windows RPC service (RPCSS) crashes trying to dereference a null pointer when it receives a certain malformed request. All MS RPC-based services (i.e. a large part of MS Windows 2000+) running on the target machine are rendered inoperable.

Solution

Block access to TCP port 135.

Severity

Classification

CVE CVE-2002-1561

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

Firefly MediaServer HTTP Header Multiple DoS Vulnerabilities
Apache Connection Blocking Denial of Service
Cogent DataHub Integer Overflow Vulnerability
freeSSHd Pre-Authentication Error Remote DoS Vulnerability
Apple Safari Malformed URI Remote DoS Vulnerability (Win)

MS RPC Services null pointer reference DoS

Take action and discover your vulnerabilities