CVE-2007-3039

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to Windows XP SP3 Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4 Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Professional SP4 Microsoft Message Queuing (MSMQ) service in Microsoft Windows XP SP2

Description: A stack-based buffer overflow issue exists in the Microsoft Message Queuing (MSMQ) service, allowing attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. This issue is remotely exploitable on Windows 2000 Server. The vulnerability occurs when the Message Queuing Service incorrectly validates input strings before passing them to a buffer. An attacker could exploit this by constructing a specially crafted MSMQ message, potentially allowing remote code execution on Microsoft Windows 2000 and local elevation of privilege on Windows XP.

Recommendations: For Microsoft Windows 2000 Server SP4, consider disabling the MSMQ service until a patch is available. For Microsoft Windows 2000 Professional SP4, restrict access to the MSMQ service to minimize the risk of exploitation. For Microsoft Windows XP SP2, avoid using the MSMQ service in a local scenario until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.