Overview
A vulnerability in the way Microsoft Remote Installation Service handles TFTP may allow a remote, unauthorized attacker to create or overwrite arbitrary operating system files.
Description
Microsoft Remote Installation Service contains a vulnerability in the way that it provides TFTP access. According to Microsoft Security Bulletin ms06-077: The vulnerability is caused by allowing anonymous access to the file structure of a hosted operating system build through the RIS TFTP service. |
Impact
A remote, unauthenticated attacker may be able to create or overwrite operating system files hosted on the Microsoft Remote Installation Service server, allowing for the insertion of backdoors or other malicious code. As a result, any system subsequently managed by, or installed from the vulnerable Remote Installation Server would be fully compromised. |
Solution
Update |
Apply a Workaround
See Microsoft Security Bulletin ms06-077 for more details. |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | ||
| Temporal | ||
| Environmental |
References
Acknowledgements
This vulnerability was reported in Microsoft Security Bulletin ms06-077. Microsoft credits Nicolas Ruff for reporting this issue.
This document was written by Chris Taschner.
Other Information
| CVE IDs: | CVE-2006-5584 |
| Severity Metric: | 28.43 |
| Date Public: | 2006-12-12 |
| Date First Published: | 2006-12-14 |
| Date Last Updated: | 2007-01-05 20:36 UTC |
| Document Revision: | 16 |