Home / bulletins

MS11-042 - Critical: Vulnerabilities in Distributed File System Could Allow Remote Code Execution (2535512) - Version:1.0

Posted on 14 June 2011

There is an newer version: MS11-042 - Version: 1.1

Critical

Severity Rating: Critical - Revision Note: V1.0 (June 14, 2011): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities in the Microsoft Distributed File System (DFS). The more severe of these vulnerabilities could allow remote code execution when an attacker sends a specially crafted DFS response to a client-initiated DFS request. An attacker who successfully exploited this vulnerability could execute arbitrary code and take complete control of an affected system. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed.

Link

Other versions

 

TOP