10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
6.6 Medium
AI Score
Confidence
Low
0.233 Low
EPSS
Percentile
96.6%
The RPC Marshalling Engine (aka NDR) in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 SP2 does not properly maintain its internal state, which allows remote attackers to overwrite arbitrary memory locations via a crafted RPC message that triggers incorrect pointer reading, related to βIDL interfaces containing a non-conformant varying arrayβ and FC_SMVARRAY, FC_LGVARRAY, FC_VARIABLE_REPEAT, and FC_VARIABLE_OFFSET, aka βRPC Marshalling Engine Vulnerability.β
blogs.technet.com/srd/archive/2009/06/09/ms09-026-how-a-developer-can-know-if-their-rpc-interface-is-affected.aspx
osvdb.org/54936
www.securityfocus.com/bid/35219
www.securitytracker.com/id?1022357
www.us-cert.gov/cas/techalerts/TA09-160A.html
www.vupen.com/english/advisories/2009/1545
docs.microsoft.com/en-us/security-updates/securitybulletins/2009/ms09-026
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6227