Technical Description

Two vulnerabilities have been identified in Microsoft Windows, which could be exploited by remote attackers to cause a denial of service. These issues are caused by errors in the Pragmatic General Multicast (PGM) protocol when handling PGM packets with an invalid option length field or fragment option, which could be exploited by a remote anonymous attacker to cause a vulnerable system to become non-responsive.

Note: PGM is only enabled when Microsoft Message Queuing (MSMQ) 3.0 is installed on Windows XP and Windows Server 2003, or when MSMQ 4.0 is installed on Windows Vista and Windows Server 2008 and PGM is specifically enabled. The MSMQ service is not installed by default.

Affected Products

Windows XP Service Pack 2
Windows XP Service Pack 3
Windows XP Professional x64 Edition
Windows XP Professional x64 Edition Service Pack 2
Windows Server 2003 Service Pack 1
Windows Server 2003 Service Pack 2
Windows Server 2003 x64 Edition
Windows Server 2003 x64 Edition Service Pack 2
Windows Server 2003 SP1 (Itanium)
Windows Server 2003 SP2 (Itanium)
Windows Vista
Windows Vista Service Pack 1
Windows Vista x64 Edition
Windows Vista x64 Edition Service Pack 1
Windows Server 2008 (32-bit)
Windows Server 2008 (x64)
Windows Server 2008 (Itanium)

Solution

Apply patches :
http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx

References

http://www.vupen.com/english/advisories/2008/1783
http://www.microsoft.com/technet/security/bulletin/ms08-036.mspx

Credits

Vulnerabilities reported by the vendor.

ChangeLog

2008-06-10 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.