Intrusion Prevention

MS.Windows.DCERPC.UPnP.NetrDfsCreateExitPoint.DoS

Description

This indicates a possible attempt to exploit a denial of service vulnerability in Microsoft Windows.
This vulnerability is due to a memory allocation error that occurs when processing specially crafted UPnP (Universal Plug and Play) "NetrDfsCreateExitPoint" requests via RPC (Remote Procedure Call). It can be exploited by attackers to crash a vulnerable system or cause the "services.exe" process to consume a large amount of system resources.

Affected Products

Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 1

Impact

Denial of Service.

Recommended Actions

Apply security patch as given in the Microsoft advisory 911052.

Other References

1