Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||Vulnerability in Server Service, Vulnerabilidad en el servicio de servidor|
It is a group of critical vulnerabilities in Server Service on Windows 2003/XP/2000 computers, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user or to disclose information.
|First detected on:||July 12, 2006|
|Detection updated on:||July 12, 2006|
MS06-035 is not categorized as virus, worm, Trojan or backdoor. It is a group of critical vulnerabilities in Server Service in Windows 2003/XP/2000, which allows to remotely execute arbitrary code in the vulnerable computer or disclose information.
- Mailslot Heap Overflow: remote code execution vulnerability, which allows hackers to gain remote control of the affected computer with the same privileges as the logged on user.
- SMB (Server Message Block) Information Disclosure: information disclosure vulnerability, which allows an attacker to view the memory used to store the SMB traffic.
These vulnerabilities are exploited by creating a special network packet and sending it to a vulnerable computer.
Attacks can be launched across the Internet, but a firewall could be used in order to prevent those attacks.
If you have a Windows 2003/XP/2000 computer, it is recommendable to download and apply the security patch for this vulnerability. Click here to access the web page for downloading the patch.