Security Research & Defense

XP SP3 range check hiding an overflow condition?

Security Research & Defense / By / June 20, 2019

We have received a few inquiries about the full disclosure posting http://seclists.org/fulldisclosure/2007/Dec/0470.html , where a range check was added in Windows XP SP3 for the Terminal Server RPC function RpcWinStationEnumerateProcesses.  The speculation stated that this change was to hide an overflow condition, potentially leading to an exploitable vulnerability in previous Windows versions.  In reality, this …

XP SP3 range check hiding an overflow condition? Read More »

MS07-063 – The case of the insecure signature

Security Research & Defense / By / June 20, 2019

MS07-063 addresses a weakness in the SMBv2 message signing algorithm. SMB signing is a feature enabled by default on domain controllers to prevent man-in-the-middle attacks. As you can imagine, if an attacker on your local subnet can tamper with the SMB network traffic between your domain controller and domain-joined clients, they can cause all kind …

MS07-063 – The case of the insecure signature Read More »

MS07-065 – The case of the significant suffix

Security Research & Defense / By / June 20, 2019

MS07-065 fixed a vulnerability in the Message Queueing service. On Windows 2000, a remote anonymous attacker could use this vulnerability to run code as local system on unpatched machines. Windows XP added defense-in-depth hardening to disallow remote access for this service that does not need to be exposed remotely. So on Windows XP, the attacker …

MS07-065 – The case of the significant suffix Read More »

Welcome to the new Microsoft Security Vulnerability Research and Defense blog!

Security Research & Defense / By / June 20, 2019

We are excited to have this outlet to share more in-depth technical information about vulnerabilities serviced by MSRC security updates and ways you can protect your organization from security vulnerabilities. You can read much more about the goals of the blog and about the SWI teams contributing to the blog in our “About” link: http://blogs.technet.com/swi/about.aspx  …

Welcome to the new Microsoft Security Vulnerability Research and Defense blog! Read More »